Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-25679 (GCVE-0-2026-25679)
Vulnerability from cvelistv5 – Published: 2026-03-06 21:28 – Updated: 2026-07-02 12:04- CWE-1286 - Improper Validation of Syntactic Correctness of Input
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/url |
Affected:
0 , < 1.25.8
(semver)
Affected: 1.26.0-0 , < 1.26.1 (semver) |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 10 |
cpe:/a:redhat:ansible_automation_platform:2.6::el10 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10 |
|
| Red Hat | Red Hat Enterprise Linux Server (v. 7 ELS) |
cpe:/o:redhat:rhel_els:7 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 |
cpe:/a:redhat:ansible_automation_platform:2.5::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
cpe:/a:redhat:openshift:4.12::el8 cpe:/a:redhat:openshift:4.12::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
cpe:/a:redhat:openshift:4.16::el8 cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
cpe:/a:redhat:openshift:4.18::el8 cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 8 |
cpe:/a:redhat:satellite:6.16::el8 cpe:/a:redhat:satellite_capsule:6.16::el8 cpe:/a:redhat:satellite_maintenance:6.16::el8 cpe:/a:redhat:satellite_utils:6.16::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.5::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9 |
|
| Red Hat | Cryostat 4 on RHEL 9 |
cpe:/a:redhat:cryostat:4::el9 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 9 |
cpe:/a:redhat:satellite:6.16::el9 cpe:/a:redhat:satellite_capsule:6.16::el9 cpe:/a:redhat:satellite_maintenance:6.16::el9 cpe:/a:redhat:satellite_utils:6.16::el9 |
|
| Red Hat | Red Hat Satellite 6.19 for RHEL 9 |
cpe:/a:redhat:satellite:6.19::el9 cpe:/a:redhat:satellite_capsule:6.19::el9 cpe:/a:redhat:satellite_maintenance:6.19::el9 cpe:/a:redhat:satellite_utils:6.19::el9 |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.1 cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v. 8.2) |
cpe:/a:redhat:rhel_aus:8.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v.8.4) |
cpe:/a:redhat:rhel_aus:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4) |
cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v.8.6) |
cpe:/a:redhat:rhel_aus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.6) |
cpe:/a:redhat:rhel_e4s:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.6) |
cpe:/a:redhat:rhel_tus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.8) |
cpe:/a:redhat:rhel_e4s:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.8) |
cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.0) |
cpe:/a:redhat:rhel_e4s:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.2) |
cpe:/a:redhat:rhel_e4s:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.4) |
cpe:/a:redhat:rhel_e4s:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 10) |
cpe:/o:redhat:enterprise_linux:10.1 cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::crb |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 9) |
cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | Custom Metric Autoscaler 2.19 |
cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9 |
|
| Red Hat | DevWorkspace Operator 0.4 |
cpe:/a:redhat:devworkspace:0.40::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.0 |
cpe:/a:redhat:logging:6.0::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.2 |
cpe:/a:redhat:logging:6.2::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.4 |
cpe:/a:redhat:logging:6.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.3.4 |
cpe:/a:redhat:multicluster_globalhub:1.3::el9 |
|
| Red Hat | Multicluster Global Hub 1.4.5 |
cpe:/a:redhat:multicluster_globalhub:1.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.5.4 |
cpe:/a:redhat:multicluster_globalhub:1.5::el9 |
|
| Red Hat | Multicluster Global Hub 1.6.2 |
cpe:/a:redhat:multicluster_globalhub:1.6::el9 |
|
| Red Hat | Network Observability (NETOBSERV) 1.11.2 |
cpe:/a:redhat:network_observ_optr:1.11::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.4 |
cpe:/a:redhat:openshift_api_data_protection:1.4::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.5 |
cpe:/a:redhat:openshift_api_data_protection:1.5::el9 |
|
| Red Hat | OpenShift Compliance Operator 1 |
cpe:/a:redhat:openshift_compliance_operator:1::el9 |
|
| Red Hat | OpenShift File Integrity Operator - FIO 1 |
cpe:/a:redhat:openshift_file_integrity_operator:1::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.14 |
cpe:/a:redhat:acm:2.14::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.15 |
cpe:/a:redhat:acm:2.15::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.10 |
cpe:/a:redhat:advanced_cluster_security:4.10::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.8 |
cpe:/a:redhat:advanced_cluster_security:4.8::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 |
|
| Red Hat | Red Hat Developer Hub 1.8 |
cpe:/a:redhat:rhdh:1.8::el9 |
|
| Red Hat | Red Hat Developer Hub 1.9 |
cpe:/a:redhat:rhdh:1.9::el9 |
|
| Red Hat | Red Hat Enterprise Linux AI 3.3 |
cpe:/a:redhat:enterprise_linux_ai:3.3::el9 |
|
| Red Hat | Red Hat Hardened Images |
cpe:/a:redhat:hummingbird:1 |
|
| Red Hat | Red Hat Lightspeed (formerly Insights) for Runtimes 1 |
cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9 |
|
| Red Hat | Red Hat OpenShift AI 2.25 |
cpe:/a:redhat:openshift_ai:2.25::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.6.5 |
cpe:/a:redhat:openshift_builds:1.6::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.7.3 |
cpe:/a:redhat:openshift_builds:1.7::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.19 |
cpe:/a:redhat:openshift:4.19::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.20 |
cpe:/a:redhat:openshift:4.20::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces 3.27 |
cpe:/a:redhat:openshift_devspaces:3.27::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 2.6 |
cpe:/a:redhat:service_mesh:2.6::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.0 |
cpe:/a:redhat:service_mesh:3.0::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.1 |
cpe:/a:redhat:service_mesh:3.1::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.2 |
cpe:/a:redhat:service_mesh:3.2::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.3 |
cpe:/a:redhat:service_mesh:3.3::el9 |
|
| Red Hat | Red Hat OpenShift distributed tracing 3.9.3 |
cpe:/a:redhat:openshift_distributed_tracing:3.9::el9 |
|
| Red Hat | Red Hat OpenStack 1.5 |
cpe:/a:redhat:stf:1.5::el9 |
|
| Red Hat | Red Hat OpenStack Services on OpenShift 18 |
cpe:/a:redhat:openstack:18.0::el9 |
|
| Red Hat | Red Hat Quay 3.10 |
cpe:/a:redhat:quay:3.10::el8 |
|
| Red Hat | Red Hat Quay 3.12 |
cpe:/a:redhat:quay:3.12::el8 |
|
| Red Hat | Red Hat Quay 3.14 |
cpe:/a:redhat:quay:3.14::el8 |
|
| Red Hat | Red Hat Quay 3.15 |
cpe:/a:redhat:quay:3.15::el8 |
|
| Red Hat | Red Hat Quay 3.16 |
cpe:/a:redhat:quay:3.16::el9 |
|
| Red Hat | Red Hat Quay 3.9 |
cpe:/a:redhat:quay:3.9::el8 |
|
| Red Hat | Red Hat Satellite 6.18 |
cpe:/a:redhat:satellite:6.18::el9 |
|
| Red Hat | Red Hat Trusted Artifact Signer 1.3 |
cpe:/a:redhat:trusted_artifact_signer:1.3::el9 |
|
| Red Hat | Red Hat Update Infrastructure 5 |
cpe:/a:redhat:rhui:5::el9 |
|
| Red Hat | Red Hat Web Terminal 1.11 |
cpe:/a:redhat:webterminal:1.11::el9 |
|
| Red Hat | Red Hat Web Terminal 1.12 |
cpe:/a:redhat:webterminal:1.12::el9 |
|
| Red Hat | Red Hat Web Terminal 1.13 |
cpe:/a:redhat:webterminal:1.13::el9 |
|
| Red Hat | Red Hat Web Terminal 1.14 |
cpe:/a:redhat:webterminal:1.14::el9 |
|
| Red Hat | Red Hat Web Terminal 1.15 |
cpe:/a:redhat:webterminal:1.15::el9 |
|
| Red Hat | mirror registry for Red Hat OpenShift 2.0 |
cpe:/a:redhat:mirror_registry:2.0::el8 |
|
| Red Hat | Assisted Installer for Red Hat OpenShift Container Platform 2 |
cpe:/a:redhat:assisted_installer:2 |
|
| Red Hat | cert-manager Operator for Red Hat OpenShift |
cpe:/a:redhat:cert_manager:1 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Deployment Validation Operator |
cpe:/a:redhat:deployment_validator_operator |
|
| Red Hat | External Secrets Operator for Red Hat OpenShift |
cpe:/a:redhat:external_secrets_operator:1 |
|
| Red Hat | ExternalDNS Operator |
cpe:/a:redhat:ext_dns_optr:1 |
|
| Red Hat | Fence Agents Remediation Operator |
cpe:/a:redhat:workload_availability_far:0 |
|
| Red Hat | Gatekeeper 3 |
cpe:/a:redhat:gatekeeper:3 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift |
cpe:/a:redhat:logging:5 |
|
| Red Hat | Logical Volume Manager Storage |
cpe:/a:redhat:lvms:4 |
|
| Red Hat | Machine Deletion Remediation Operator |
cpe:/a:redhat:workload_availability_mdr:0 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | mirror registry for Red Hat OpenShift |
cpe:/a:redhat:mirror_registry:1 |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | OpenShift Service Mesh 2 |
cpe:/a:redhat:service_mesh:2 |
|
| Red Hat | Red Hat 3scale API Management Platform 2 |
cpe:/a:redhat:red_hat_3scale_amp:2 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Connectivity Link 1 |
cpe:/a:redhat:connectivity_link:1 |
|
| Red Hat | Red Hat Edge Manager 1 |
cpe:/a:redhat:edge_manager:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Cluster Manager CLI |
cpe:/a:redhat:openshift_cluster_manager_cli:1 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Openshift Data Foundation 4 |
cpe:/a:redhat:openshift_data_foundation:4 |
|
| Red Hat | Red Hat OpenShift GitOps |
cpe:/a:redhat:openshift_gitops:1 |
|
| Red Hat | Red Hat OpenShift on AWS |
cpe:/a:redhat:openshift_service_on_aws:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 2 |
cpe:/a:redhat:service_interconnect:2 |
|
| Red Hat | Security Profiles Operator |
cpe:/a:redhat:openshift_security_profiles_operator:1 |
|
| Red Hat | streams for Apache Kafka 3 |
cpe:/a:redhat:amq_streams:3 |
|
| Red Hat | Zero Trust Workload Identity Manager |
cpe:/a:redhat:zero_trust_workload_identity_manager:1 |
|
| Red Hat | Zero Trust Workload Identity Manager - Tech Preview |
cpe:/a:redhat:zero_trust_workload_identity_manager:0 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Node HealthCheck Operator |
cpe:/a:redhat:workload_availability_nhc:0 |
|
| Red Hat | Power monitoring for Red Hat OpenShift |
cpe:/a:redhat:openshift_power_monitoring |
|
| Red Hat | Red Hat AMQ Clients |
cpe:/a:redhat:amq_clients:2023 |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat build of Apache Camel - HawtIO 4 |
cpe:/a:redhat:apache_camel_hawtio:4 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift for Windows Containers |
cpe:/a:redhat:windows_machine_config |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-25679",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-10T13:36:26.554241Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-10T13:37:02.459Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el10",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_els:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.12::el8",
"cpe:/a:redhat:openshift:4.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.16::el8",
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.18::el8",
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el8",
"cpe:/a:redhat:satellite_capsule:6.16::el8",
"cpe:/a:redhat:satellite_maintenance:6.16::el8",
"cpe:/a:redhat:satellite_utils:6.16::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4::el9"
],
"defaultStatus": "affected",
"product": "Cryostat 4 on RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1",
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el9",
"cpe:/a:redhat:satellite_capsule:6.16::el9",
"cpe:/a:redhat:satellite_maintenance:6.16::el9",
"cpe:/a:redhat:satellite_utils:6.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.19::el9",
"cpe:/a:redhat:satellite_capsule:6.19::el9",
"cpe:/a:redhat:satellite_maintenance:6.19::el9",
"cpe:/a:redhat:satellite_utils:6.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.19 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.1",
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.2::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.2::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.1",
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9"
],
"defaultStatus": "affected",
"product": "Custom Metric Autoscaler 2.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace:0.40::el9"
],
"defaultStatus": "affected",
"product": "DevWorkspace Operator 0.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.0::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.2::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.4::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.3::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.3.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.4::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.4.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.5::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.5.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.6::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1.11::el9"
],
"defaultStatus": "affected",
"product": "Network Observability (NETOBSERV) 1.11.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.4::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.5::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_compliance_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift Compliance Operator 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift File Integrity Operator - FIO 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.8::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.8::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:hummingbird:1"
],
"defaultStatus": "affected",
"product": "Red Hat Hardened Images",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Lightspeed (formerly Insights) for Runtimes 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:2.25::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 2.25",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.6.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.7::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.7.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.27::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces 3.27",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2.6::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3.9.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:stf:1.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Services on OpenShift 18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.12::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.14::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.15::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhui:5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Update Infrastructure 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.11::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:2.0::el8"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift 2.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:deployment_validator_operator"
],
"defaultStatus": "affected",
"product": "Deployment Validation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "affected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ext_dns_optr:1"
],
"defaultStatus": "affected",
"product": "ExternalDNS Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_far:0"
],
"defaultStatus": "affected",
"product": "Fence Agents Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "affected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:5"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_mdr:0"
],
"defaultStatus": "affected",
"product": "Machine Deletion Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:1"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "affected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "affected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:connectivity_link:1"
],
"defaultStatus": "affected",
"product": "Red Hat Connectivity Link 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_service_on_aws:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift on AWS",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:2"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_security_profiles_operator:1"
],
"defaultStatus": "affected",
"product": "Security Profiles Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_streams:3"
],
"defaultStatus": "affected",
"product": "streams for Apache Kafka 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "unaffected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_nhc:0"
],
"defaultStatus": "unaffected",
"product": "Node HealthCheck Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "unaffected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_clients:2023"
],
"defaultStatus": "unaffected",
"product": "Red Hat AMQ Clients",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4"
],
"defaultStatus": "unaffected",
"product": "Red Hat build of Apache Camel - HawtIO 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
}
],
"datePublic": "2026-03-06T21:28:14.211Z",
"descriptions": [
{
"lang": "en",
"value": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1286",
"description": "Improper Validation of Syntactic Correctness of Input",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-02T12:04:52.558Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"name": "RHBZ#2445356",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25679.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13508"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8855"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13512"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26527"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26541"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28886"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25043"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21655"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25180"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6341"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28047"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14868"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8314"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9435"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8856"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5943"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10133"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8849"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8931"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19719"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19750"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7328"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10929"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11375"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10701"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8842"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7005"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8840"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5941"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7992"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6344"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6388"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13642"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13643"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7669"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10169"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11413"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11412"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19032"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29195"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19133"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19022"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19027"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19026"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22937"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19049"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19135"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22450"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19017"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24386"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19055"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19132"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19031"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29035"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19126"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19128"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33722"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6949"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16875"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7011"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7009"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8456"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7674"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7878"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7879"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20581"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9043"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9094"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8434"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19634"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7876"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20582"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8860"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9093"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8851"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7877"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20584"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8877"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8878"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9695"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9436"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7883"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8881"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8949"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8852"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25252"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25251"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9434"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7833"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8879"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9090"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25248"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8322"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25253"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25250"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22733"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10712"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7834"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8930"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8882"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19721"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8324"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9109"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9439"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8848"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5944"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8847"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8845"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9108"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19720"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19475"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17287"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7665"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9097"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9098"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7259"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8841"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5942"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6382"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6383"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13671"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9044"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7315"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29455"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29703"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19350"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19181"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19185"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19184"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23228"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19353"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22714"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26445"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19207"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29702"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9872"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11800"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22862"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22423"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22347"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5110"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21769"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23345"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16874"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8433"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22627"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25127"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8151"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13829"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20889"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11217"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13791"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13545"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9742"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10140"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10141"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7385"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7291"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9052"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10184"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10158"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12282"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21696"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14100"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21691"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:15091"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28893"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14774"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20088"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17598"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21657"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20041"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6564"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10175"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8483"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11686"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9440"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8484"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9448"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8490"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9453"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8491"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9461"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8493"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14020"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6720"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21017"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19375"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14879"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10125"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10065"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10250"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10225"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8338"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8337"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8167"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28441"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:13508: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:8855: Red Hat Enterprise Linux Server (v. 7 ELS)"
},
{
"lang": "en",
"value": "RHSA-2026:13512: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:26527: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:26541: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:28886: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:25043: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:21655: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:25180: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:6341: Cryostat 4 on RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:28047: Red Hat OpenStack Platform 17.1"
},
{
"lang": "en",
"value": "RHSA-2026:34365: Red Hat Satellite 6.19 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:14868: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8314: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:9435: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8856: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:5943: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:10133: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8849: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8931: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19750: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:17040: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:7328: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:10929: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:16696: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:11375: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:10701: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8842: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:7005: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:8840: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:5941: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:7992: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:6344: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:6388: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:13642: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:13643: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:7669: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:10169: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:11413: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:11412: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19032: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:29195: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19133: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19022: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19027: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19026: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19049: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19017: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:24386: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19055: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19132: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19031: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:29035: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19126: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19128: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:33722: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:6949: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:16875: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:7011: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:7009: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:8456: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:7674: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:7878: Red Hat Enterprise Linux AppStream AUS (v. 8.2)"
},
{
"lang": "en",
"value": "RHSA-2026:8853: Red Hat Enterprise Linux AppStream AUS (v. 8.2)"
},
{
"lang": "en",
"value": "RHSA-2026:7879: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:20581: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:9043: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:9094: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:8434: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:7876: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:20582: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:8860: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9093: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:8851: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:7877: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:20584: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:8877: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:8878: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:9695: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:16102: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:9436: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:7883: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8881: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8949: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:8852: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:25252: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25251: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:9434: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:7833: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:8879: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:9090: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25248: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:8322: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25253: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25250: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:22733: Red Hat Enterprise Linux AppStream E4S (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12030: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12032: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:10712: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:7834: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:8930: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:8882: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12033: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12028: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:8324: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12031: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12029: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:11749: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9109: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9439: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:8848: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:5944: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:8847: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:8845: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9108: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:19475: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:17287: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:7665: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9097: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9098: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:7259: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:8841: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:5942: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:6382: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:6383: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:13671: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:9044: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:7315: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29455: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29703: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19350: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19181: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19185: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19184: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:26445: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19207: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29702: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:26636: Custom Metric Autoscaler 2.19"
},
{
"lang": "en",
"value": "RHSA-2026:9872: DevWorkspace Operator 0.4"
},
{
"lang": "en",
"value": "RHSA-2026:26585: Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"lang": "en",
"value": "RHSA-2026:11800: Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"lang": "en",
"value": "RHSA-2026:22862: Logging Subsystem for Red Hat OpenShift 6.4"
},
{
"lang": "en",
"value": "RHSA-2026:22423: Multicluster Global Hub 1.3.4"
},
{
"lang": "en",
"value": "RHSA-2026:22347: Multicluster Global Hub 1.4.5"
},
{
"lang": "en",
"value": "RHSA-2026:5110: Multicluster Global Hub 1.5.4"
},
{
"lang": "en",
"value": "RHSA-2026:21769: Multicluster Global Hub 1.5.4"
},
{
"lang": "en",
"value": "RHSA-2026:23345: Multicluster Global Hub 1.6.2"
},
{
"lang": "en",
"value": "RHSA-2026:16874: Network Observability (NETOBSERV) 1.11.2"
},
{
"lang": "en",
"value": "RHSA-2026:29854: OpenShift API for Data Protection 1.4"
},
{
"lang": "en",
"value": "RHSA-2026:26568: OpenShift API for Data Protection 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:8433: OpenShift Compliance Operator 1"
},
{
"lang": "en",
"value": "RHSA-2026:22627: OpenShift File Integrity Operator - FIO 1"
},
{
"lang": "en",
"value": "RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14"
},
{
"lang": "en",
"value": "RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:11217: Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"lang": "en",
"value": "RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:13545: Red Hat Ansible Automation Platform 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:9742: Red Hat Developer Hub 1.8"
},
{
"lang": "en",
"value": "RHSA-2026:6802: Red Hat Developer Hub 1.9"
},
{
"lang": "en",
"value": "RHSA-2026:10140: Red Hat Enterprise Linux AI 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:10141: Red Hat Enterprise Linux AI 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:7385: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:7291: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:9052: Red Hat Lightspeed (formerly Insights) for Runtimes 1"
},
{
"lang": "en",
"value": "RHSA-2026:10184: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:5549: Red Hat OpenShift Builds 1.6.5"
},
{
"lang": "en",
"value": "RHSA-2026:10158: Red Hat OpenShift Builds 1.7.3"
},
{
"lang": "en",
"value": "RHSA-2026:12282: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:21696: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:14100: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:15091: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:28893: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:14774: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:20088: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:10175: Red Hat OpenShift Dev Spaces 3.27"
},
{
"lang": "en",
"value": "RHSA-2026:11688: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:11686: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:9440: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:8484: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:9448: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:8490: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:9453: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:8491: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:9461: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:8493: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:14020: Red Hat OpenStack 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:11747: Red Hat OpenStack Services on OpenShift 18"
},
{
"lang": "en",
"value": "RHSA-2026:11916: Red Hat Quay 3.10"
},
{
"lang": "en",
"value": "RHSA-2026:6720: Red Hat Quay 3.12"
},
{
"lang": "en",
"value": "RHSA-2026:11856: Red Hat Quay 3.12"
},
{
"lang": "en",
"value": "RHSA-2026:21017: Red Hat Quay 3.14"
},
{
"lang": "en",
"value": "RHSA-2026:24853: Red Hat Quay 3.15"
},
{
"lang": "en",
"value": "RHSA-2026:19375: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:11996: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:14879: Red Hat Satellite 6.18"
},
{
"lang": "en",
"value": "RHSA-2026:10125: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10065: Red Hat Update Infrastructure 5"
},
{
"lang": "en",
"value": "RHSA-2026:11768: Red Hat Update Infrastructure 5"
},
{
"lang": "en",
"value": "RHSA-2026:10250: Red Hat Web Terminal 1.11"
},
{
"lang": "en",
"value": "RHSA-2026:10225: Red Hat Web Terminal 1.12"
},
{
"lang": "en",
"value": "RHSA-2026:8338: Red Hat Web Terminal 1.13"
},
{
"lang": "en",
"value": "RHSA-2026:8337: Red Hat Web Terminal 1.14"
},
{
"lang": "en",
"value": "RHSA-2026:8167: Red Hat Web Terminal 1.15"
},
{
"lang": "en",
"value": "RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-03-06T22:02:11.567Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-03-06T21:28:14.211Z",
"value": "Made public."
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/url",
"product": "net/url",
"programRoutines": [
{
"name": "parseHost"
},
{
"name": "JoinPath"
},
{
"name": "Parse"
},
{
"name": "ParseRequestURI"
},
{
"name": "URL.Parse"
},
{
"name": "URL.UnmarshalBinary"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.25.8",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.26.1",
"status": "affected",
"version": "1.26.0-0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Masaki Hara (https://github.com/qnighy) of Wantedly"
}
],
"descriptions": [
{
"lang": "en",
"value": "url.Parse insufficiently validated the host/authority component and accepted some invalid URLs."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-1286: Improper Validation of Syntactic Correctness of Input",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-06T21:28:14.211Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/752180"
},
{
"url": "https://go.dev/issue/77578"
},
{
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"title": "Incorrect parsing of IPv6 host literals in net/url"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2026-25679",
"datePublished": "2026-03-06T21:28:14.211Z",
"dateReserved": "2026-02-05T01:33:41.943Z",
"dateUpdated": "2026-07-02T12:04:52.558Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-25679",
"date": "2026-07-02",
"epss": "0.00728",
"percentile": "0.49682"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-25679\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-03-06T22:16:00.720\",\"lastModified\":\"2026-07-02T12:16:57.677\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.\"},{\"lang\":\"es\",\"value\":\"url.Parse valid\u00f3 insuficientemente el componente de host/autoridad y acept\u00f3 algunas URL inv\u00e1lidas.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/url\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/url\",\"programRoutines\":[{\"name\":\"parseHost\"},{\"name\":\"JoinPath\"},{\"name\":\"Parse\"},{\"name\":\"ParseRequestURI\"},{\"name\":\"URL.Parse\"},{\"name\":\"URL.UnmarshalBinary\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.25.8\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.26.0-0\",\"lessThan\":\"1.26.1\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux Server (v. 7 ELS)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_els:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.12::el8\",\"cpe:/a:redhat:openshift:4.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.13::el8\",\"cpe:/a:redhat:openshift:4.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.14::el8\",\"cpe:/a:redhat:openshift:4.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.16::el8\",\"cpe:/a:redhat:openshift:4.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.18::el8\",\"cpe:/a:redhat:openshift:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el8\",\"cpe:/a:redhat:satellite_capsule:6.16::el8\",\"cpe:/a:redhat:satellite_maintenance:6.16::el8\",\"cpe:/a:redhat:satellite_utils:6.16::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4 on RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\",\"cpe:/a:redhat:openstack:17.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el9\",\"cpe:/a:redhat:satellite_capsule:6.16::el9\",\"cpe:/a:redhat:satellite_maintenance:6.16::el9\",\"cpe:/a:redhat:satellite_utils:6.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.19 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.19::el9\",\"cpe:/a:redhat:satellite_capsule:6.19::el9\",\"cpe:/a:redhat:satellite_maintenance:6.19::el9\",\"cpe:/a:redhat:satellite_utils:6.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.1\",\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v. 8.2)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.2::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v.8.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.2)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.2::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.1\",\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler 2.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"DevWorkspace Operator 0.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace:0.40::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.3.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.4.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.5.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability (NETOBSERV) 1.11.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Compliance Operator 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift File Integrity Operator - FIO 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Hardened Images\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:hummingbird:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed (formerly Insights) for Runtimes 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 2.25\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:2.25::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.6.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.7.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.7::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces 3.27\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.27::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3.9.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:stf:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Services on OpenShift 18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.12::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.14::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.15::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Update Infrastructure 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhui:5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift 2.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:2.0::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Deployment Validation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:deployment_validator_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"ExternalDNS Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ext_dns_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Fence Agents Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_far:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Machine Deletion Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_mdr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Connectivity Link 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:connectivity_link:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift on AWS\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_service_on_aws:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Security Profiles Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_security_profiles_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"streams for Apache Kafka 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_streams:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Node HealthCheck Operator\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_nhc:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AMQ Clients\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:amq_clients:2023\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apache Camel - HawtIO 4\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-03-10T13:36:26.554241Z\",\"id\":\"CVE-2026-25679\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-425\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1286\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.25.8\",\"matchCriteriaId\":\"2D293CC0-B163-4E62-B985-52FB6ECA64C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:1.26.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A40FE3CB-0D03-462B-8A19-4DF1920ABE82\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/752180\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://go.dev/issue/77578\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk\",\"source\":\"security@golang.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4601\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10065\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10125\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10133\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10140\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10141\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10158\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10169\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10175\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10184\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10225\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10250\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10701\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10712\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10929\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11217\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11375\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11412\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11413\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11686\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11688\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11747\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11749\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11768\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11800\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11856\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11916\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11996\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12028\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12029\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12030\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12031\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12032\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12033\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12282\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13508\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13512\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13545\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13642\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13643\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13671\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13791\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13829\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14020\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14100\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14774\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14868\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14879\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:15091\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16102\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16696\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16874\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16875\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17040\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17084\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17287\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17598\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19017\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19022\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19026\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19027\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19031\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19032\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19049\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19055\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19126\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19128\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19132\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19133\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19135\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19181\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19184\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19185\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19207\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19350\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19353\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19375\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19475\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19634\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19719\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19720\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19721\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19750\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20041\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20088\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20581\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20582\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20584\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20889\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21017\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21655\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21657\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21691\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21696\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21769\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22347\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22423\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22450\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22627\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22714\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22733\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22862\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22937\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23228\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23345\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24386\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25043\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25127\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25180\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25248\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25250\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25251\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25252\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25253\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26445\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26527\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26541\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26568\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26585\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26636\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27076\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28047\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28441\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28886\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28893\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29035\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29195\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29455\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29702\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29703\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33722\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34365\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5110\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5549\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5941\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5942\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5943\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5944\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6341\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6344\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6382\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6383\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6388\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6564\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6720\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6802\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6949\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7005\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7009\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7011\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7259\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7291\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7315\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7328\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7385\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7665\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7669\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7674\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7833\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7834\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7876\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7877\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7878\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7879\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7883\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7992\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8151\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8167\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8314\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8322\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8324\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8337\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8338\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8433\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8434\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8456\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8483\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8484\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8490\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8491\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8493\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8840\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8841\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8842\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8845\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8847\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8848\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8849\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8851\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8852\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8855\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8856\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8860\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8877\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8878\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8879\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8881\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8882\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8930\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8931\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8949\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9043\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9044\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9052\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9090\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9093\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9094\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9097\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9098\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9108\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9109\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9385\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9434\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9435\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9436\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9439\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9440\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9448\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9453\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9461\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9695\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9742\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9872\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-25679\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2445356\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25679.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"net/url: Incorrect parsing of IPv6 host literals in net/url\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_els:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux Server (v. 7 ELS)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el8\", \"cpe:/a:redhat:openshift:4.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el8\", \"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el8\", \"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.16::el8\", \"cpe:/a:redhat:satellite_capsule:6.16::el8\", \"cpe:/a:redhat:satellite_maintenance:6.16::el8\", \"cpe:/a:redhat:satellite_utils:6.16::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.16 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4 on RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\", \"cpe:/a:redhat:openstack:17.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.16::el9\", \"cpe:/a:redhat:satellite_capsule:6.16::el9\", \"cpe:/a:redhat:satellite_maintenance:6.16::el9\", \"cpe:/a:redhat:satellite_utils:6.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.16 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.19::el9\", \"cpe:/a:redhat:satellite_capsule:6.19::el9\", \"cpe:/a:redhat:satellite_maintenance:6.19::el9\", \"cpe:/a:redhat:satellite_utils:6.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.19 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.1\", \"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v. 8.2)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v.8.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.2)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.1\", \"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat CodeReady Linux Builder EUS (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat CodeReady Linux Builder EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Custom Metric Autoscaler 2.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devworkspace:0.40::el9\"], \"vendor\": \"Red Hat\", \"product\": \"DevWorkspace Operator 0.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.3.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.4.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.5.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability (NETOBSERV) 1.11.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Compliance Operator 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift File Integrity Operator - FIO 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Lightspeed (formerly Insights) for Runtimes 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai:2.25::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI 2.25\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_builds:1.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Builds 1.6.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_builds:1.7::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Builds 1.7.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.20::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.20\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3.27::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces 3.27\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.9.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:stf:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Services on OpenShift 18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.14::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer 1.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:2.0::el8\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift 2.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Assisted Installer for Red Hat OpenShift Container Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"cert-manager Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:deployment_validator_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Deployment Validation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:external_secrets_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"External Secrets Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ext_dns_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"ExternalDNS Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_far:0\"], \"vendor\": \"Red Hat\", \"product\": \"Fence Agents Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:5\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lvms:4\"], \"vendor\": \"Red Hat\", \"product\": \"Logical Volume Manager Storage\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_mdr:0\"], \"vendor\": \"Red Hat\", \"product\": \"Machine Deletion Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:1\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:red_hat_3scale_amp:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat 3scale API Management Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:connectivity_link:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Connectivity Link 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Cluster Manager CLI\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_service_on_aws:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift on AWS\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_security_profiles_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"Security Profiles Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_streams:3\"], \"vendor\": \"Red Hat\", \"product\": \"streams for Apache Kafka 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_nhc:0\"], \"vendor\": \"Red Hat\", \"product\": \"Node HealthCheck Operator\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_power_monitoring\"], \"vendor\": \"Red Hat\", \"product\": \"Power monitoring for Red Hat OpenShift\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_clients:2023\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat AMQ Clients\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apache Camel - HawtIO 4\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:windows_machine_config\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift for Windows Containers\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-03-06T22:02:11.567Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-03-06T21:28:14.211Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:13508: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8855: Red Hat Enterprise Linux Server (v. 7 ELS)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13512: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26527: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26541: Red Hat OpenShift Container Platform 4.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28886: Red Hat OpenShift Container Platform 4.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25043: Red Hat OpenShift Container Platform 4.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21655: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25180: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6341: Cryostat 4 on RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28047: Red Hat OpenStack Platform 17.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34365: Red Hat Satellite 6.19 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14868: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8314: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9435: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8856: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5943: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10133: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8849: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8931: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19750: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17040: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7328: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10929: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16696: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11375: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10701: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8842: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7005: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8840: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5941: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7992: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6344: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6388: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13642: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13643: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7669: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10169: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11413: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11412: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19032: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29195: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19133: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19022: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19027: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19026: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19049: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19017: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24386: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19055: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19132: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19031: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29035: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19126: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19128: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33722: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6949: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16875: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7011: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7009: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8456: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7674: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7878: Red Hat Enterprise Linux AppStream AUS (v. 8.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8853: Red Hat Enterprise Linux AppStream AUS (v. 8.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7879: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20581: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9043: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9094: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8434: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7876: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20582: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8860: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9093: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8851: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7877: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20584: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8877: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8878: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9695: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16102: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9436: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7883: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8881: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8949: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8852: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25252: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25251: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9434: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7833: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8879: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9090: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25248: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8322: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25253: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25250: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22733: Red Hat Enterprise Linux AppStream E4S (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12030: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12032: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10712: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7834: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8930: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8882: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12033: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12028: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8324: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12031: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12029: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11749: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9109: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9439: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8848: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5944: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8847: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8845: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9108: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19475: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17287: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7665: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9097: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9098: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7259: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8841: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5942: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6382: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6383: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13671: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9044: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7315: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29455: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29703: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19350: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19181: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19185: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19184: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26445: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19207: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29702: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26636: Custom Metric Autoscaler 2.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9872: DevWorkspace Operator 0.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26585: Logging Subsystem for Red Hat OpenShift 6.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11800: Logging Subsystem for Red Hat OpenShift 6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22862: Logging Subsystem for Red Hat OpenShift 6.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22423: Multicluster Global Hub 1.3.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22347: Multicluster Global Hub 1.4.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5110: Multicluster Global Hub 1.5.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21769: Multicluster Global Hub 1.5.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23345: Multicluster Global Hub 1.6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16874: Network Observability (NETOBSERV) 1.11.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29854: OpenShift API for Data Protection 1.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26568: OpenShift API for Data Protection 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8433: OpenShift Compliance Operator 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22627: OpenShift File Integrity Operator - FIO 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11217: Red Hat Advanced Cluster Security for Kubernetes 4.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13545: Red Hat Ansible Automation Platform 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9742: Red Hat Developer Hub 1.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6802: Red Hat Developer Hub 1.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10140: Red Hat Enterprise Linux AI 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10141: Red Hat Enterprise Linux AI 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7385: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7291: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9052: Red Hat Lightspeed (formerly Insights) for Runtimes 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10184: Red Hat OpenShift AI 2.25\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5549: Red Hat OpenShift Builds 1.6.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10158: Red Hat OpenShift Builds 1.7.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12282: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21696: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14100: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:15091: Red Hat OpenShift Container Platform 4.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28893: Red Hat OpenShift Container Platform 4.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14774: Red Hat OpenShift Container Platform 4.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20088: Red Hat OpenShift Container Platform 4.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10175: Red Hat OpenShift Dev Spaces 3.27\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11688: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11686: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9440: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8484: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9448: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8490: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9453: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8491: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9461: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8493: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14020: Red Hat OpenStack 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11747: Red Hat OpenStack Services on OpenShift 18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11916: Red Hat Quay 3.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6720: Red Hat Quay 3.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11856: Red Hat Quay 3.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21017: Red Hat Quay 3.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24853: Red Hat Quay 3.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19375: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11996: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14879: Red Hat Satellite 6.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10125: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10065: Red Hat Update Infrastructure 5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11768: Red Hat Update Infrastructure 5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10250: Red Hat Web Terminal 1.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10225: Red Hat Web Terminal 1.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8338: Red Hat Web Terminal 1.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8337: Red Hat Web Terminal 1.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8167: Red Hat Web Terminal 1.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-03-06T21:28:14.211Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-25679\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2445356\", \"name\": \"RHBZ#2445356\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25679.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13508\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8855\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13512\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26527\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26541\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28886\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25043\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21655\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25180\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:27076\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6341\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28047\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34365\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14868\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8314\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9435\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8856\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5943\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10133\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8849\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8931\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17084\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19719\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19750\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17040\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7328\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10929\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16696\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11375\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10701\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8842\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7005\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8840\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5941\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7992\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6344\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6388\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13642\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13643\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7669\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10169\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11413\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11412\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19032\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29195\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19133\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19022\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19027\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19026\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22937\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19049\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22450\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19017\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24386\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19055\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19132\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19031\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29035\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19126\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19128\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33722\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6949\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16875\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7011\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7009\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8456\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7674\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7878\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8853\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20581\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9043\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9094\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8434\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19634\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7876\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20582\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8860\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9093\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8851\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7877\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20584\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8877\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8878\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9695\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16102\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9436\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7883\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8881\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8949\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8852\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25252\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25251\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9434\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7833\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9090\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25248\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8322\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25253\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25250\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22733\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12030\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12032\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10712\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7834\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8930\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8882\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12033\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19721\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12028\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8324\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12031\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12029\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11749\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9109\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9439\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8848\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5944\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8847\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8845\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9108\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19720\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19475\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17287\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7665\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9098\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7259\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8841\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5942\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6382\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6383\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13671\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9044\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7315\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29455\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29703\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19350\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19181\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19185\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19184\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23228\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19353\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22714\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26445\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19207\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29702\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26636\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9872\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26585\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11800\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22862\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22423\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22347\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5110\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21769\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23345\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16874\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29854\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26568\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8433\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22627\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25127\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8151\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13829\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20889\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11217\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13791\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13545\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9742\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6802\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10140\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10141\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7385\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7291\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9052\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10184\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5549\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10158\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12282\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21696\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14100\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21691\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:15091\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28893\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14774\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20088\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17598\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21657\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20041\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6564\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10175\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11688\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8483\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11686\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9440\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8484\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9448\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8490\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9453\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8491\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9461\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8493\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9385\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14020\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11747\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11916\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6720\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11856\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21017\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24853\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19375\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11996\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10125\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10065\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11768\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10250\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10225\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8338\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8337\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8167\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28441\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1286\", \"description\": \"Improper Validation of Syntactic Correctness of Input\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-02T12:04:52.558Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-25679\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-10T13:36:26.554241Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-10T13:36:57.330Z\"}}], \"cna\": {\"title\": \"Incorrect parsing of IPv6 host literals in net/url\", \"credits\": [{\"lang\": \"en\", \"value\": \"Masaki Hara (https://github.com/qnighy) of Wantedly\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/url\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.25.8\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.26.0-0\", \"lessThan\": \"1.26.1\", \"versionType\": \"semver\"}], \"packageName\": \"net/url\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"parseHost\"}, {\"name\": \"JoinPath\"}, {\"name\": \"Parse\"}, {\"name\": \"ParseRequestURI\"}, {\"name\": \"URL.Parse\"}, {\"name\": \"URL.UnmarshalBinary\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/752180\"}, {\"url\": \"https://go.dev/issue/77578\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4601\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-1286: Improper Validation of Syntactic Correctness of Input\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-03-06T21:28:14.211Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-25679\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-02T12:04:52.558Z\", \"dateReserved\": \"2026-02-05T01:33:41.943Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-03-06T21:28:14.211Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:11413
Vulnerability from csaf_redhat - Published: 2026-04-28 20:49 - Updated: 2026-07-02 13:37The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for yggdrasil is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "yggdrasil is a system daemon that subscribes to topics on an MQTT broker and routes any data received on the topics to an appropriate child \"worker\" process, exchanging data with its worker processes through a D-Bus message broker.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11413",
"url": "https://access.redhat.com/errata/RHSA-2026:11413"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11413.json"
}
],
"title": "Red Hat Security Advisory: yggdrasil security update",
"tracking": {
"current_release_date": "2026-07-02T13:37:56+00:00",
"generator": {
"date": "2026-07-02T13:37:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11413",
"initial_release_date": "2026-04-28T20:49:42+00:00",
"revision_history": [
{
"date": "2026-04-28T20:49:42+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-28T20:49:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:37:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "yggdrasil-0:0.4.8-4.el10_1.src",
"product": {
"name": "yggdrasil-0:0.4.8-4.el10_1.src",
"product_id": "yggdrasil-0:0.4.8-4.el10_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil@0.4.8-4.el10_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "yggdrasil-0:0.4.8-4.el10_1.aarch64",
"product": {
"name": "yggdrasil-0:0.4.8-4.el10_1.aarch64",
"product_id": "yggdrasil-0:0.4.8-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil@0.4.8-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"product": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"product_id": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debugsource@0.4.8-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product_id": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debuginfo@0.4.8-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product_id": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-examples-debuginfo@0.4.8-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"product": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"product_id": "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-devel@0.4.8-4.el10_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"product": {
"name": "yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"product_id": "yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil@0.4.8-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"product": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"product_id": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debugsource@0.4.8-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product_id": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debuginfo@0.4.8-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product_id": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-examples-debuginfo@0.4.8-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"product": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"product_id": "yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-devel@0.4.8-4.el10_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "yggdrasil-0:0.4.8-4.el10_1.s390x",
"product": {
"name": "yggdrasil-0:0.4.8-4.el10_1.s390x",
"product_id": "yggdrasil-0:0.4.8-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil@0.4.8-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"product": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"product_id": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debugsource@0.4.8-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"product": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"product_id": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debuginfo@0.4.8-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"product": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"product_id": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-examples-debuginfo@0.4.8-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"product": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"product_id": "yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-devel@0.4.8-4.el10_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "yggdrasil-0:0.4.8-4.el10_1.x86_64",
"product": {
"name": "yggdrasil-0:0.4.8-4.el10_1.x86_64",
"product_id": "yggdrasil-0:0.4.8-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil@0.4.8-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"product": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"product_id": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debugsource@0.4.8-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product_id": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-debuginfo@0.4.8-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product_id": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-examples-debuginfo@0.4.8-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"product": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"product_id": "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-devel@0.4.8-4.el10_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-0:0.4.8-4.el10_1.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src"
},
"product_reference": "yggdrasil-0:0.4.8-4.el10_1.src",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"relates_to_product_reference": "CRB-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
},
"product_reference": "yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"relates_to_product_reference": "CRB-10.1.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-28T20:49:42+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11413"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.src",
"AppStream-10.1.Z:yggdrasil-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"AppStream-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-devel-0:0.4.8-4.el10_1.x86_64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.aarch64",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.ppc64le",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.s390x",
"CRB-10.1.Z:yggdrasil-examples-debuginfo-0:0.4.8-4.el10_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:11686
Vulnerability from csaf_redhat - Published: 2026-04-29 12:06 - Updated: 2026-07-02 13:37The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh 2.6.15\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh 2.6.15, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\n\nSecurity Fix(es):\n* proxyv2-rhel9: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11686",
"url": "https://access.redhat.com/errata/RHSA-2026:11686"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-25679",
"url": "https://access.redhat.com/security/cve/cve-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11686.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.6.15",
"tracking": {
"current_release_date": "2026-07-02T13:37:59+00:00",
"generator": {
"date": "2026-07-02T13:37:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11686",
"initial_release_date": "2026-04-29T12:06:04+00:00",
"revision_history": [
{
"date": "2026-04-29T12:06:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T12:06:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:37:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 2.6",
"product": {
"name": "Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3Aa0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256%3Aaab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777375171"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3Aa14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256%3A218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777375171"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256%3A29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777375171"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256%3Ac1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777375171"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:06:04+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11686"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:6cb381af9923aee441763f5338912ba6a53aec681b42d794ee40c5b054c7c3b3_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:98a890fb00e9f8d11c18ac02af640e12cc9bd78a70a91632c9944e58f1ba6872_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a0578780579fcd74c269dca0087dd97382e45bc684d99c362c99922849efd2e1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:a14db46bfb9ad3dc127b3ab8d6b3b4bb9fe30abe9f5b86b56054b9523af168e0_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:218504ae4ddd13908f1b5995003f23324745ed347ab2e216ed8a24807310bfcd_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:29c42cfcd4220a9c15b4e0561bef8d9dcb452e5c476a2cb28aec09992bfa0d25_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:aab01c4a2de8d891371dc0d421ec3b81906c3c716db09a432520e7e3b48d42bf_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/proxyv2-rhel9@sha256:c1d5aaf421e33a7e1997f15749aebd3d66e19f22db3123fc870231732774b21a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:11688
Vulnerability from csaf_redhat - Published: 2026-04-29 12:20 - Updated: 2026-07-02 14:59The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 | — |
Workaround
|
A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially leading to memory corruption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 | — |
Workaround
|
A flaw was found in the cmd/compile package in the Go standard library. A no-op interface conversion prevented the compiler from correctly identifying non-overlapping memory moves. As a result, the compiler allows unsafe memory move operations to occur at runtime, potentially causing data corruption, memory corruption or unexpected application behavior.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 | — |
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh 2.6.15\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh 2.6.15, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\n\nSecurity Fix(es):\n* istio-operator-rhel8: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* istio-cni-rhel8: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* pilot-rhel8: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* ratelimit-rhel8: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* istio-cni-rhel8: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* pilot-rhel8: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* istio-rhel8-operator: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* istio-cni-rhel8: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* pilot-rhel8: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* ratelimit-rhel8: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* istio-rhel8-operator: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-cni-rhel8: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* pilot-rhel8: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* ratelimit-rhel8: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-rhel8-operator: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* istio-cni-rhel8: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* pilot-rhel8: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* ratelimit-rhel8: no-op interface conversion bypasses overlap checking (CVE-2026-27144)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11688",
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27143",
"url": "https://access.redhat.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27144",
"url": "https://access.redhat.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-25679",
"url": "https://access.redhat.com/security/cve/cve-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-27143",
"url": "https://access.redhat.com/security/cve/cve-2026-27143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-27144",
"url": "https://access.redhat.com/security/cve/cve-2026-27144"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-32280",
"url": "https://access.redhat.com/security/cve/cve-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2026-34986",
"url": "https://access.redhat.com/security/cve/cve-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11688.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.6.15",
"tracking": {
"current_release_date": "2026-07-02T14:59:18+00:00",
"generator": {
"date": "2026-07-02T14:59:18+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11688",
"initial_release_date": "2026-04-29T12:20:23+00:00",
"revision_history": [
{
"date": "2026-04-29T12:20:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T12:20:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T14:59:18+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 2.6",
"product": {
"name": "Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-operator-bundle@sha256%3Aeb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777381347"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256%3Afb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777374598"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256%3A127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319952"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256%3Ad05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256%3A099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319850"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256%3A2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319773"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256%3Af407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777374598"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256%3Aa9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319952"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256%3A9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256%3Adc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319850"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256%3Adb7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319773"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256%3A8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777374598"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256%3A04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319952"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256%3Afa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256%3Ad7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319850"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256%3Aed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319773"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256%3A55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777374598"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256%3Ac8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319952"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256%3Aa7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777320087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256%3Ad9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319850"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256%3Abdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1777319773"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64 as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le as a component of Red Hat OpenShift Service Mesh 2.6",
"product_id": "Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:20:23+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27143",
"cwe": {
"id": "CWE-733",
"name": "Compiler Optimization Removal or Modification of Security-critical Code"
},
"discovery_date": "2026-04-08T02:01:29.491546+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456342"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially leading to memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: cmd/compile: possible memory corruption after bound check elimination",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is only exploitable in applications that contain a loop structure that relies on an induction variable. An induction variable is a variable that gets modified, usually incremented or decremented, by a predictable amount on each iteration. Inside the loop, the induction variable must be directly used as the index to access or modify elements within an array or a slice. Additionally, an attacker must be able to cause an integer overflow or underflow in the induction variable to trigger this issue. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "RHBZ#2456342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456342"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27143"
},
{
"category": "external",
"summary": "https://go.dev/cl/763765",
"url": "https://go.dev/cl/763765"
},
{
"category": "external",
"summary": "https://go.dev/issue/78333",
"url": "https://go.dev/issue/78333"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4868",
"url": "https://pkg.go.dev/vuln/GO-2026-4868"
}
],
"release_date": "2026-04-08T01:06:57.168000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:20:23+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, strictly sanitize and enforce bounds checking on any untrusted user input that influences loop counters, iteration limits, or memory indices. If there is no integer overflow or underflow, the out-of-bounds access cannot occur.",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: cmd/compile: possible memory corruption after bound check elimination"
},
{
"cve": "CVE-2026-27144",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2026-04-08T02:01:22.896153+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the cmd/compile package in the Go standard library. A no-op interface conversion prevented the compiler from correctly identifying non-overlapping memory moves. As a result, the compiler allows unsafe memory move operations to occur at runtime, potentially causing data corruption, memory corruption or unexpected application behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: cmd/compile: no-op interface conversion bypasses overlap checking",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable in applications that contain a memory move or copy operation that is subject to a no-op (no-operation) interface conversion. Furthermore, the source and destination memory addresses involved in the move or copy must overlap and an attacker must be able to supply an input that triggers this specific operation. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "RHBZ#2456340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27144"
},
{
"category": "external",
"summary": "https://go.dev/cl/763764",
"url": "https://go.dev/cl/763764"
},
{
"category": "external",
"summary": "https://go.dev/issue/78371",
"url": "https://go.dev/issue/78371"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4867",
"url": "https://pkg.go.dev/vuln/GO-2026-4867"
}
],
"release_date": "2026-04-08T01:06:56.908000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:20:23+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"category": "workaround",
"details": "To mitigate this issue, review code that performs memory copies or struct assignments. If data is being passed through an interface (such as \u0027any\u0027 or \u0027interface{}\u0027) just before a move operation, refactor the code to use concrete types or explicit pointers instead.",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: cmd/compile: no-op interface conversion bypasses overlap checking"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:20:23+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T12:20:23+00:00",
"details": "See Red Hat OpenShift Service Mesh 2.6.15 documentation at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/service_mesh/service-mesh-2-x",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:04b1ac41f2359886a4bd8c7103a45cc60397b69b7a79c18aa6124ebe09b2d9a4_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:127eeb73112e219027af60fc73f78b313ca4660b3a7c472bae711d7278d886a7_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:a9dbef80d591e7bbb95681fb19183858e309a53463ee83fd6da288261b531590_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/grafana-rhel8@sha256:c8f38b059dd071540e71a5d8ca7ccdd75650dd9d6b61163920bea03d8fede00d_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:55eff6f4571c6f9ac79071da166328cff43afe999364cf3a1b6428896ea65f01_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:8bb141f2442e991b11c3ae22a771f5f4b4c8de2f061430bcc66dc0d9fb0eb680_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:f407418a60bc916c97e83d02bb20686f830cc1669fedb9dd7da2e5aed1059567_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-cni-rhel8@sha256:fb4c5046d41ceb03b06a1cfeb6cd1e23800291fdfa63bc9f4d83a6d66319d815_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-operator-bundle@sha256:eb939796d4c218cf2dcb1f74452a4f1928076aed130b84a2cd7da07ffc24a929_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:9a557accbe2e00e916ee963375318b32904a7977db79c12c323de12fdfde0fc9_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:a7f0ac59b0f01e16a648e84611752884974f192ea6b59c36edc883662bee0145_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:d05d3c0323f54ba53fae5cd72ba80b352ebf4dc4140664515f3e004cada71aba_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/istio-rhel8-operator@sha256:fa2ddb85a7778159e908f8985dd249c1ade12999469c47705ea9ec421d63a865_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:099139a263a6ad38795c1fb9c0441289b630b2fa35925c022c4e75b541736717_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d7ce936cea6082357f4849eca746af432a4082d73f76146999cbf1bba3961751_ppc64le",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:d9d39f4355dc3467a8d5266516c9d6ef63d452d4e8e7e5f4fb7233f9fcec621c_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/pilot-rhel8@sha256:dc39732c6580eab197d18d3cf347ca4996cc3d6901024332ffdb09433a42e14a_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:2627fd45d7d117d3c3ea75cb1dfe8c013b2ae167faefc08053f4b794415f9ab1_amd64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:bdc7508446fb198445811e678f91712f9b1d50c4e709bf65d9760ac8879937c4_s390x",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:db7c7d745d2f18ac440ae62cbaa4dbda49c842253e00a4a8d36e61f843789619_arm64",
"Red Hat OpenShift Service Mesh 2.6:registry.redhat.io/openshift-service-mesh/ratelimit-rhel8@sha256:ed56d6fb026e175877f9be146497802beb0c52bf35b11ebb3e7fce9f969f05f4_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:11747
Vulnerability from csaf_redhat - Published: 2026-04-29 13:59 - Updated: 2026-07-02 16:10A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64 | — |
Workaround
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64 | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenStack Services on OpenShift (RHOSO) 18.0.18 containers are now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Services on OpenShift is a hybrid cloud solution\nfor deploying and managing virtualized and containerized applications in a\nscalable infrastructure with a Red Hat OpenShift Container Platform (RHOCP)\ncontrol plane.\n\nSecurity Fixes:\n\n* golang: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* golang: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* golang: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11747",
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/search",
"url": "https://catalog.redhat.com/software/containers/search"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11747.json"
}
],
"title": "Red Hat Security Advisory: Release of containers for RHOSO 18.0.18 security update",
"tracking": {
"current_release_date": "2026-07-02T16:10:07+00:00",
"generator": {
"date": "2026-07-02T16:10:07+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11747",
"initial_release_date": "2026-04-29T13:59:22+00:00",
"revision_history": [
{
"date": "2026-04-29T13:59:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T13:59:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T16:10:07+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenStack Services on OpenShift 18",
"product": {
"name": "Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:18.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Services on OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"product_id": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/barbican-rhel9-operator@sha256%3A93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976894"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"product_id": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cinder-rhel9-operator@sha256%3A26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"product_id": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"product_identification_helper": {
"purl": "pkg:oci/designate-rhel9-operator@sha256%3A1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974095"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"product": {
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"product_id": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"product_identification_helper": {
"purl": "pkg:oci/edpm-hardened-uefi-rhel9@sha256%3Aea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775483576"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"product_id": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/glance-rhel9-operator@sha256%3Ae3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"product_id": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/heat-rhel9-operator@sha256%3A0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"product_id": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"product_identification_helper": {
"purl": "pkg:oci/horizon-rhel9-operator@sha256%3A77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976890"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"product_id": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/infra-rhel9-operator@sha256%3A4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973634"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ironic-rhel9-operator@sha256%3Abd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"product": {
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"product_id": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ironic-python-agent-rhel9@sha256%3Af49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775483211"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"product_id": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keystone-rhel9-operator@sha256%3A4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"product_id": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"product_identification_helper": {
"purl": "pkg:oci/manila-rhel9-operator@sha256%3Ae6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976894"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"product_id": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mariadb-rhel9-operator@sha256%3Ad68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976903"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"product_id": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mysqld-exporter-rhel9@sha256%3A4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973256"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"product_id": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"product_identification_helper": {
"purl": "pkg:oci/neutron-rhel9-operator@sha256%3Ade6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976893"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"product_id": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"product_identification_helper": {
"purl": "pkg:oci/nova-rhel9-operator@sha256%3A0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973309"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"product": {
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"product_id": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"product_identification_helper": {
"purl": "pkg:oci/octavia-amphora-image-rhel9@sha256%3A3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775483468"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"product_id": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"product_identification_helper": {
"purl": "pkg:oci/octavia-rhel9-operator@sha256%3Acdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ee-openstack-ansible-ee-rhel9@sha256%3A700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774982089"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-api-rhel9@sha256%3Acd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-base-rhel9@sha256%3Aef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489416"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-evaluator-rhel9@sha256%3A1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490935"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-listener-rhel9@sha256%3Acad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490918"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-notifier-rhel9@sha256%3Ab07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490872"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-api-rhel9@sha256%3A3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492072"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-base-rhel9@sha256%3A91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489428"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-keystone-listener-rhel9@sha256%3Af02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-worker-rhel9@sha256%3A75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492058"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-baremetal-agent-rhel9@sha256%3A5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774537171"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-baremetal-rhel9-operator@sha256%3A32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974056"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-base-rhel9@sha256%3A9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775483211"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-base-rhel9@sha256%3A657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489453"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-central-rhel9@sha256%3A207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491135"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-compute-rhel9@sha256%3Af4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491190"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-ipmi-rhel9@sha256%3A8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491093"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-notification-rhel9@sha256%3Ae1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491158"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-api-rhel9@sha256%3A2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492305"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-backup-rhel9@sha256%3Ade01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492402"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-base-rhel9@sha256%3Ab96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489461"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-scheduler-rhel9@sha256%3Ab76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492490"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-volume-rhel9@sha256%3A217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492288"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-api-rhel9@sha256%3Ac4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492655"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-base-rhel9@sha256%3A6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489492"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-processor-rhel9@sha256%3A22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492600"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cron-rhel9@sha256%3A4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487965"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-dependencies-rhel9@sha256%3A34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487708"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-api-rhel9@sha256%3A33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491004"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-backend-bind9-rhel9@sha256%3Aa340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491149"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-base-rhel9@sha256%3Ab0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-central-rhel9@sha256%3Afb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491179"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-mdns-rhel9@sha256%3A7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491090"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-producer-rhel9@sha256%3Af529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491092"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-sink-rhel9@sha256%3A02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491064"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-worker-rhel9@sha256%3Aee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491153"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-frr-rhel9@sha256%3A96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487684"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-glance-api-rhel9@sha256%3Ad3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489442"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-haproxy-rhel9@sha256%3A69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487665"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-api-cfn-rhel9@sha256%3Adbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491277"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-api-rhel9@sha256%3Af3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491390"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-base-rhel9@sha256%3A79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489371"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-engine-rhel9@sha256%3A82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491286"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-horizon-rhel9@sha256%3Ae0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-api-rhel9@sha256%3A8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491216"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-base-rhel9@sha256%3A2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489379"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-conductor-rhel9@sha256%3Aa4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491288"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-inspector-rhel9@sha256%3A376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491131"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-neutron-agent-rhel9@sha256%3Aefb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492562"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-pxe-rhel9@sha256%3A0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491266"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-iscsid-rhel9@sha256%3Abb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489428"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-keystone-rhel9@sha256%3A323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-api-rhel9@sha256%3Ad13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490768"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-base-rhel9@sha256%3A731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489378"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-scheduler-rhel9@sha256%3A26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490849"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-share-rhel9@sha256%3A21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490731"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-mariadb-rhel9@sha256%3A5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775488184"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-memcached-rhel9@sha256%3A01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487954"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-multipathd-rhel9@sha256%3Aba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487665"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-must-gather-rhel9@sha256%3Ac050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1775495122"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-netutils-rhel9@sha256%3Aa78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487722"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-network-exporter-rhel9@sha256%3A7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974413"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-agent-base-rhel9@sha256%3A947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492567"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-base-rhel9@sha256%3A92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489454"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-dhcp-agent-rhel9@sha256%3A48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775493643"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-metadata-agent-ovn-rhel9@sha256%3A65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775493636"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-ovn-agent-rhel9@sha256%3Aeb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775493631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-server-rhel9@sha256%3Acc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492563"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-sriov-agent-rhel9@sha256%3A32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492605"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-api-rhel9@sha256%3Ab5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491408"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-base-rhel9@sha256%3A6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489420"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-compute-rhel9@sha256%3A10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491603"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-conductor-rhel9@sha256%3A0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491555"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-novncproxy-rhel9@sha256%3A56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775509915"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-scheduler-rhel9@sha256%3Af0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491430"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-api-rhel9@sha256%3Aa8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492278"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-base-rhel9@sha256%3A3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489454"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-health-manager-rhel9@sha256%3A5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492313"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-housekeeping-rhel9@sha256%3Abb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492347"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-worker-rhel9@sha256%3A12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492241"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-openstackclient-rhel9@sha256%3A2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487954"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-operator-bundle@sha256%3Ae701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1776887117"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rhel9-operator@sha256%3A9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1776882788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-base-rhel9@sha256%3A7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487954"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-bgp-agent-rhel9@sha256%3A6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487964"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-controller-rhel9@sha256%3Abfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489243"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-nb-db-server-rhel9@sha256%3A05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489252"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-northd-rhel9@sha256%3A18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489263"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-sb-db-server-rhel9@sha256%3A6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489255"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-placement-api-rhel9@sha256%3Aa6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489372"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rabbitmq-rhel9@sha256%3A99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487708"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-redis-rhel9@sha256%3Afec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487708"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rsyslog-rhel9@sha256%3Aa28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487722"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-account-rhel9@sha256%3Af65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492876"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-base-rhel9@sha256%3Af767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489457"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-container-rhel9@sha256%3A57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492692"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-object-rhel9@sha256%3A2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492850"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-proxy-server-rhel9@sha256%3A7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775492795"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-tempest-all-rhel9@sha256%3Ad498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-tempest-rhel9@sha256%3A167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489442"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-unbound-rhel9@sha256%3A87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775487665"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-api-rhel9@sha256%3Ac00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-applier-rhel9@sha256%3Ae2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775490859"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-base-rhel9@sha256%3A2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775489428"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-decision-engine-rhel9@sha256%3A8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1775491013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovn-rhel9-operator@sha256%3Ab94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"product_id": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9-operator@sha256%3Af1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974045"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"product_id": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/prometheus-podman-exporter-rhel9@sha256%3A6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974078"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"product_id": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rabbitmq-cluster-rhel9-operator@sha256%3A560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974449"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"product_id": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/sg-core-rhel9@sha256%3A3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974026"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"product_id": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/swift-rhel9-operator@sha256%3Afad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774976892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"product_id": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"product_identification_helper": {
"purl": "pkg:oci/telemetry-rhel9-operator@sha256%3A3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973876"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"product_id": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/test-rhel9-operator@sha256%3Aaa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774974317"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"product_id": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"product_identification_helper": {
"purl": "pkg:oci/watcher-rhel9-operator@sha256%3Aaa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1774973636"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64"
},
"product_reference": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64"
},
"product_reference": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64"
},
"product_reference": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T13:59:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update as a new RHOSO 18.0 deployment, see \u201cDeploying Red Hat OpenStack Services on OpenShift\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/deploying_red_hat_openstack_services_on_openshift/index\n\nFor details on how to apply this update to an existing RHOSO 18.0 deployment, see \u201cUpdating your environment to the latest maintenance release\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/updating_your_environment_to_the_latest_maintenance_release/index",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T13:59:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update as a new RHOSO 18.0 deployment, see \u201cDeploying Red Hat OpenStack Services on OpenShift\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/deploying_red_hat_openstack_services_on_openshift/index\n\nFor details on how to apply this update to an existing RHOSO 18.0 deployment, see \u201cUpdating your environment to the latest maintenance release\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/updating_your_environment_to_the_latest_maintenance_release/index",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T13:59:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update as a new RHOSO 18.0 deployment, see \u201cDeploying Red Hat OpenStack Services on OpenShift\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/deploying_red_hat_openstack_services_on_openshift/index\n\nFor details on how to apply this update to an existing RHOSO 18.0 deployment, see \u201cUpdating your environment to the latest maintenance release\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/updating_your_environment_to_the_latest_maintenance_release/index",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:93cca70ca2d64dff06450c3e39f6b69c5287e57b3a4465fc31a45ce6247e4aae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:26cb2fb6f04532f0f49afffcd42cf570a9d788febb99f9bd4727f4fd2cf107b3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:1e5097ee423659df4bb110b29ae6d72be01a3d6b0f2543880cfad36f14cdeb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:700547e85197e2cfab167dfbd60be6082487eaf8f571ab7aa94588c1074842c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:e3fdc6df9c4f9101348bdb1804e21cda919632e4f89da5acdd6171c53dfe3a6c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0cf694a2529a9f6db2253432c1c2d42b79d5002288fd7b50795d6d8b8bf439d2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:77f73cdc9d53348d746406d6e2e21b06d0f70c7fe2805a4e3504045f2a1f9133_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:4e8692fc881c657f01f335e67712c7cfca1eee34d08bfbb0b4ca78c4a041fc17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:bd64a3d0e64ede0b87aa68ff06b79a6c9d3a2b2c915534a1e9054a8b080de167_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:4169aebbffb7dafa8c023a9162e3c4df577c41758d12d2f4d6dc8e20d754c620_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:e6072055d9c18a2535d1d38359ebaee06e90d4414394dc016803f4783a1ed680_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:d68e1c277c67d3f0a8413da42e82959c6172015ff7acf5eaa71983f3d5c1a545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:4511273802e4b7c71ac8b6f0f1e87706f0291fabec6585bd5315d604bd0f4284_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:de6ab3356ebfd64ab68f2416c2d114587d9ff9ebda65f7abfe0716e058444647_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:0fa36fc28fa60c9cd4848f627dfb46670e186f8b391b276816a37cdd52b26103_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:cdbff564040f02cd4923fa14c6f0a36e69fb8043a7a3d32a37498b9336419320_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:5700e4731cebf2b58ce9dc2c26f707e80ae8e5df6064a768b9c4d5a21ef1985c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:32efd70bbc507c3b0c5e7c28eb6f7e65239d7fc9c84656aad6e29a512e420f89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:c050525bbeedabb8fb49720d4a13943116b8e765d0074fdb504a3499532e9bad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:7fbb48f04cb3db7285b0b04176528959f8187294d823fd58fe904214deec3c74_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:e701a16261404e6f426ebf09042b82f232e0b5b29581785f66d200d8423c39be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:9d70b9af106925a418bce77a2fab192579ee2c70b4b705742760c6f0dc30ec75_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:b94df690cb3d7a22b7419ebd16d96ff5a31c5225fc619614791d4037e2342a57_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:f1944eead21b440de0f79eade19f044fdd3858ed2fa7c0773ac776f11ada8b35_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:6510521704dcb211458e47ad3aa1a45066b4014dfe2379fae88506116ad86b33_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:560eb0097bcd627b3c921074cba7c8789fb7f7acbb9c87980088a463063b76a6_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:3e5385acf99bd1cd98161c5ebbfcd492110416495931846ab416ada808ce88a8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:fad8a8fe46ab2ececba12e1258945386bf0295f567dc104d596df0dc2e858c76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:3537312fc43fc5033bbdeffddf55ee171844a0a6ac74b5c10eb9ef9d89a04b41_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:aa9cbe972e6abfd21f02baf8b3f5e6e8085f3df8888e2fa8bc9859bb12aa95b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:aa19821a69760e90d8ed16f076f31ee35e6df8300cc78301f1ecdddd7b3fdb69_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:ea95a351461e108f4c3eabd8a7374ffaad9cac3155efb42821257e50372a6536_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:f49f41cb16e02836f76ecba2163b9730667cf04ed54500c3933a4eb3e58462cf_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:3c558b6fd7dc1a066c8f45114324f99ef1704387a4d4c4215348833dd62ed960_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:cd0902d382b3d84e8279352e4a4cb0814c4cf0cf2a584501ec6b31a011065c52_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:ef989b40812d667b2349b857e8ac59544ef63a163c72acaa2ca7402f31c4506a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:1264c86bd8461b563fcabdbe9775b9eda94cdb8bcc58de92de84422ede631e29_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:cad30fcda3096c56d8ca3301fc38d944342441ddeb1e50f4de55ca439255e4ad_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:b07c8d243d6e5b6e9585a82812012ddf5f3fd61573a37f406226f5770a2b8ad1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:3602b68f0d4b68570e9cd4a0ec90616a89f3195a4e6460e4742665938d14f010_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:91b4a38d46c7688e67c10e09e2321a4073af69c41960ae856483d2516f7b7982_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:f02b781719280c1cdfb44288e206c45abc84061b1d8fa7d81a248758520c5c6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:75f04d219f2b1d963c73e9b770af7e8b4ad85290af396680c690baa59becadb5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:9660f1397d0e62399975038f32aa4f5775e6f1ec73a7f872fc7d266cee3c53eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:657f9cd9237b507abccac30033d2615e1a82e3c9fc0ffd1b6cbbaf9c328de4f9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:207735a6c948f24ad0f4a81373cbf1c6bd28f226b67e3d6e13e71672428c42be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:f4a85bda00b2b0e769271e0b589168efa4e05c2aa7165d89c40476e6e8c14d49_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:8cd5de23389ae8b3a7daaa41f9912a97c96a1e6e7f48318018da1fd633966a3e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:e1d32ea948cdf656ceefba5060de915abd78a41d217fe63a35d7e739003db115_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:2d4dd86902c565d7a271fbab1d11b3fe34cff845299581d95d95a084c06e809a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:de01a3a230803472f916648c22193a404061db2baa8ee0637b78628a6b6f977f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:b96d462e55b4ec3683796c793930ff6fb399f0b9d320a31d61d357067fadeeb1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:b76054b49589d7255640e2b5d1ea8485d1353b414173d5f6db85787bcb20d1ba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:217ace800250212b06b169f88273e47a563f84a63e32bc1f478f481c612bf127_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:c4f67abf6c495fb7daded745336991d6a9099877d2a3b6a4b4c3a231e57eb6c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:6f557b1dfc0f7af983a6496aee272e7938145f1f09c58b3d208492a8a8b728b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:22a80347a797f7a90739173e7e9746f59d160b367093a7151f5fdeb5265e5266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:4bac11b305314ff856d286f9096fef9aab39d79b053f9c5b53f7174078a40a99_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:34f122ee04bc9b2f2ed3620c4c433746485bb932d703221c4296faec0cc5beb3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:33d54207ed175aaf256eff690997b67a7070c96304e455974a0688c56956827a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:a340684fa243c0cc5eff80b87db0a1dcccf0378ae062d190915ca50a57d36e63_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:b0aba0d8de204c08a0508717e13c9af3ed72b0de6cd6712b42082625f529a12e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:fb4d57527cf1a53f524822960cab90a634dd2c7719e22ec1e0cede3bae863454_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:7bb4777ef8d7ccbf4ec482c6c01cddddb1bf02fcd3ec6817d78e047fe3ecea2e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:f529e36e76004d0ee26a6156bba9c706e105720373ad1d4fc4f9b9fc75e10ad8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:02b1e79d506bd02321ad04d91900e693b84198e5e6ce16c5c1f46292f4242c21_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:ee4c01d3193889a024206071dfd60287634d4d88baa624a02a9b2875609ce388_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:96c0c36ec862391c0e44693f35071112e5f49715b6a7d2fa095990adf8049350_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:d3f02a6b09298d7488259f71994866b08e8e29da0f1ae4cd5415f3dd3350384d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:69e36d18dc043962a95aaf6c7631c9e28fb9747a3b988cb24054d5374bae155c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:dbb0383d326ae26e40f57c9e064fa859f0f0cab3c3d4300c0c7ef1014c360769_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f3a1d17754d58746315e7e7b05e4f63a7d4c3978b81edc0e76af3e9671c505eb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:79b043c394b992cdde3f1984171796a0574839f69572e7102d0a780128b68667_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:82272cdf73aab91aa8a4d22854578aaed85d1327b75de3cc62c3b9bbdd195f40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:e0b092b9cbda39314ea5f13e2385dc1a3b79a6ab21f250af67a0fa090a10475e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:8aed4e2397d1d5fb53a192585f5da3b3e426ab9c7598b26706932f4a0c999639_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:2d5e1b1701bab5a826c0ae5a80a11b3d756527b4f39abec03fcdfab1311e1dba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:a4a251f089b896b3a462d053665c9664d96d7c0565013a7628f9b727aec4c991_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:376fddebd25c4aec1cecbcc9c59d823c57a0db1ecc55ca813d0f067b89f6d25c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:efb7af5dc3def5a029e5b37d6127ac6bfd2783d957f8696f8b11456760971171_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:0a8cad0e9bc121aa47cd3c2ae3507adaad1f1a938ef31603d027623383cb9e2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:bb044f66fd7b5562e4ca54c99810cd00d168068a2b0d62eefc3f423345c2f83b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:323a1af339db91f57a1711af9483d31e0f90ef23f746aee0fb7773dc612c9cf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:d13d24d610972f4b78a953fe66954079fd33af05635c11bb85725de67ed02793_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:731261a4a08c06fc7572aeb201c40aab8a1044c2cc50f360458f379dcdb9b518_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:26f85ecf8779c15ecb91c2d79438682e985d5a9bf630b3fd9403351cb8f311a1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:21eb88e83b192c6b96942b62fc057baf0dc8c51eea68088f82bb24911b405c6e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:5d42c32de2702ada02eb6b8e5e2d4660232a5b25d3d61a8e1f7ec6f5376f1de4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:01d018c62c217b56c5dd34a1872125090193f2d204ff38b49ae09f2eb3a4769a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:ba428cc07995116d5e2ec577c9ed434c9d6ed910bf33ae291ebfdefe87203578_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:a78044278339d18be438c58f23e942b66156bcf2109b6090e76cfbc4eeb840e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:947ab3e1b4c62d93f529c17d191125fcbb1e2713a0807ba1e7cfbc0dea611e2c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:92ea061e3c10212f377d2285d22cc34df12af85d166b7e79820e317c6b902425_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:48293941377b5137e659dc8b52f6e9946c2889b75282cabfae6a190a37542212_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:65fd97457ceaee13cdffeb02b3a056bbf9ac25e294a5da5f0e5cec3c299390d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:eb8fe59d00ef6174fbc4cd067b196483c1010b8c1da5fed9f23c322b4ffd5c89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:cc674d5d921188b5fc06d3f49e6939daf25d64149ace2724745626dee3b8863b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:32d897ac57ebb35e011eb1da3050ff7fa81913cb0a12b4ec0bc02decb46b57c9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:b5405aee377aae4bd1a0ada32905087e2c81c032eb18395577a06d265fb2adb9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:6bda6e7e74db9ae90b536022b35843d09b9b5763653fa4f0a12c23ea131ad611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:10f8b8936b1d169cc120e9b3e10cb9a9aa116a597f0827fc8b1e70395ea94391_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:0f7950bf34d00d2b7446b36dfb2ef9ecc3433191e795468cdbeaa7e1422a4659_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:56b684155e7f0967fe854f58989de6c7a02bf39c41e782e543c056fdc510589e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:f0dc857857401864b06ed1c3ed51131f28051d658223bc3e20f267215d1c35d8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:a8f06d4f8d76f03b6c86cb83891e7bc46fffe683184171eb60f4a49a43cac52b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:3c5313ce838eaec82b7d07182a11a2485ef82bd4ea929b50ce74823d32937f4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:5c80a9674576f148107f96f162e79dee5996f5bab8a621880c6c76879b989545_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:bb18243c89b44bb826229e40607c5f79edefec8757aab28148049bedefb87b88_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:12e35aad7285b453246b15d10390523c2b818ec67d384aaf05a478e8f6d62799_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:2037d675d45412b49c0eb4a238e1f4ac477c138764d922d9604c67bf7026012c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:7df9659ef5096f2e11a7185c5c3f6518254deff7c5c0b63392609e1a732ce92e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:6118995c98c3324b9173136ecb4fd7aeead2afc2f86f02ce402263e2e37d3002_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:bfd0a1f6f8aa4dca010d90359c381210b521b47d9b00f574592f3d019cb55a40_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:05a037bc4bd06a76ac8f92b70937118494ca05fdb3ac6c738f5c71c160645b1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:18b6beb34d4973461eaf6c8ac1ec55cd7c3cc1813e379af6212529dede1c8038_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:6829f2224a231cb16262300fd6fcdd4b53cece54d4f868ee3608073af45797d7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a6bb3a85bb8ded353efe8e7c283fdb8e3b1b7b5f9016ac6650d5db41ca648089_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:99880220187e46462d745c0c60517d3a418ca76943b23c51e5e5688f557c5460_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:fec0ba9552b55619862fd2f22a79aa8660e3a3d0464d9a6c66a48f7031e4c899_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:a28ce9164c97450a456481d648fb2262b9fb4d12ebe8f5a234b055b8325dcfa5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:f65cbb55f2a6520d5b5ac8b894c2d19a8afd79424ee8e5bcd11a5e3a28473705_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:f767623a483077319dbbc71bd5e7d17a1b4a7c6b916146cfaf22fb9b01403e23_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:57c87151020c9ea32ea366a09e5514298a3d8534d2229fb6a90ea5730a7c1eec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:2203c92174e5457041676e105c9f4713bc28c9e16d7e95cf891357c8084d2484_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:7cc1cc309e709b59c6d28b4d6f704c9ec0ac1e0bc56de44873b664c1f49ab249_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:d498155482e67bd90d84cd4e1b920c21a46d0eed8d662d84e010258b2f9cb934_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:167bef41842020e5218176d081027831cc6291fcc9335bb11a032b5fbb57fca2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:87cfee4d7b3c5918e810c59ff9124470459e0d3fd53013fe5fbe407714fd00c7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:c00fb49cb69de8c24133bbf002b1d013287180cf177f30a7d3fa5d33c266b109_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:e2af290802b0a04c3e47b70e13d67de385f7afaf99fd6d766b7eaf8ec53dc6a7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:2084b2d4414ebef49a54519411c33b432703f184d7b7761d1d59dbfdd26dc6be_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:8c4d433d1364289f1b85f85ed81bfdf1b490d60aa218b169526e41e6cdf69988_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:11749
Vulnerability from csaf_redhat - Published: 2026-04-29 14:31 - Updated: 2026-07-02 16:16A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for buildah is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. \n\nSecurity Fix(es):\n\n* golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11749",
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11749.json"
}
],
"title": "Red Hat Security Advisory: buildah security update",
"tracking": {
"current_release_date": "2026-07-02T16:16:36+00:00",
"generator": {
"date": "2026-07-02T16:16:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11749",
"initial_release_date": "2026-04-29T14:31:52+00:00",
"revision_history": [
{
"date": "2026-04-29T14:31:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T14:31:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T16:16:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.src",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.src",
"product_id": "buildah-2:1.39.6-2.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:11768
Vulnerability from csaf_redhat - Published: 2026-04-29 14:26 - Updated: 2026-07-02 13:38A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the Python webbrowser.open() API. If a specially crafted URL containing "%action" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Python's decompression modules, including `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile`. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is experiencing high memory usage. Exploitation of this flaw could potentially allow an attacker to execute arbitrary code or access sensitive data. The vulnerability is only present if the program re-uses decompressor instances across multiple decompression calls even after a `MemoryError` is raised during decompression. Using the helper functions to one-shot decompress data such as `lzma.decompress()`, `bz2.decompress()`, `gzip.decompress()`, and `zlib.decompress()` are not affected as a new decompressor instance is used per call. If the decompressor instance is not re-used after an error condition, this usage is similarly not vulnerable.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Workaround
|
A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
|
A flaw was found in Vim, an open-source command-line text editor. Specifically, an operating system (OS) command injection vulnerability exists in the `netrw` standard plugin. A remote attacker could exploit this by tricking a user into opening a specially crafted URL, such as one using the `scp://` protocol handler. Successful exploitation allows the attacker to execute arbitrary shell commands with the same privileges as the Vim process, leading to potential system compromise.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Vim. This vulnerability, a heap-buffer-overflow and a segmentation fault, exists in the swap file recovery logic. A local attacker could exploit this by providing a specially crafted swap file. This could lead to a denial of service (DoS) or potentially information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Vim. By including a newline character in a pattern passed to Vim's glob() function, an attacker may be able to execute arbitrary shell commands. This command injection vulnerability allows for arbitrary code execution, depending on the user's shell settings.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new set of Red Hat Update Infrastructure container images is now available as a Technology Preview in the Red Hat container registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Technology Preview features are not fully supported, may not be functionally complete, and are not suitable for deployment in production.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11768",
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/7141172",
"url": "https://access.redhat.com/articles/7141172"
},
{
"category": "external",
"summary": "https://access.redhat.com/products/red-hat-update-infrastructure",
"url": "https://access.redhat.com/products/red-hat-update-infrastructure"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27135",
"url": "https://access.redhat.com/security/cve/CVE-2026-27135"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-28417",
"url": "https://access.redhat.com/security/cve/CVE-2026-28417"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-28421",
"url": "https://access.redhat.com/security/cve/CVE-2026-28421"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33412",
"url": "https://access.redhat.com/security/cve/CVE-2026-33412"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4424",
"url": "https://access.redhat.com/security/cve/CVE-2026-4424"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4786",
"url": "https://access.redhat.com/security/cve/CVE-2026-4786"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-5121",
"url": "https://access.redhat.com/security/cve/CVE-2026-5121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6100",
"url": "https://access.redhat.com/security/cve/CVE-2026-6100"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_update_infrastructure/5",
"url": "https://docs.redhat.com/en/documentation/red_hat_update_infrastructure/5"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11768.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Update Infrastructure 5.2 Technology Preview security update",
"tracking": {
"current_release_date": "2026-07-02T13:38:03+00:00",
"generator": {
"date": "2026-07-02T13:38:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11768",
"initial_release_date": "2026-04-29T14:26:51+00:00",
"revision_history": [
{
"date": "2026-04-29T14:26:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T14:27:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:38:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Update Infrastructure 5",
"product": {
"name": "Red Hat Update Infrastructure 5",
"product_id": "Red Hat Update Infrastructure 5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhui:5::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Update Infrastructure"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"product": {
"name": "registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"product_id": "registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cds-kubernetes-tp-rhel9@sha256%3A9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274?arch=amd64\u0026repository_url=registry.redhat.io/rhui5\u0026tag=1777459441"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"product": {
"name": "registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"product_id": "registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/installer-tp-rhel9@sha256%3A9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e?arch=amd64\u0026repository_url=registry.redhat.io/rhui5\u0026tag=1777454300"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64",
"product": {
"name": "registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64",
"product_id": "registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhua-tp-rhel9@sha256%3A1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa?arch=amd64\u0026repository_url=registry.redhat.io/rhui5\u0026tag=1777459504"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64 as a component of Red Hat Update Infrastructure 5",
"product_id": "Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64"
},
"product_reference": "registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"relates_to_product_reference": "Red Hat Update Infrastructure 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64 as a component of Red Hat Update Infrastructure 5",
"product_id": "Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64"
},
"product_reference": "registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"relates_to_product_reference": "Red Hat Update Infrastructure 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64 as a component of Red Hat Update Infrastructure 5",
"product_id": "Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
},
"product_reference": "registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64",
"relates_to_product_reference": "Red Hat Update Infrastructure 5"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Elhanan Haenel"
]
}
],
"cve": "CVE-2026-4424",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2026-03-19T12:22:21.740000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449006"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "IMPORTANT: This heap out-of-bounds read vulnerability in libarchive\u0027s RAR archive processing logic can lead to information disclosure. A remote attacker can exploit this flaw by providing a specially crafted RAR archive, potentially revealing sensitive heap memory information without requiring authentication or user interaction on systems that process untrusted archives.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4424"
},
{
"category": "external",
"summary": "RHBZ#2449006",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4424",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4424"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2898",
"url": "https://github.com/libarchive/libarchive/pull/2898"
}
],
"release_date": "2026-03-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing"
},
{
"cve": "CVE-2026-4786",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2026-04-13T22:01:38.006388+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2458049"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python webbrowser.open() API. If a specially crafted URL containing \"%action\" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw in the Python `webbrowser.open()` API allows for command injection and arbitrary code execution when processing specially crafted URLs containing \"%action\". This bypasses a previous mitigation for CVE-2026-4519.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4786"
},
{
"category": "external",
"summary": "RHBZ#2458049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4786",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4786"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/148169",
"url": "https://github.com/python/cpython/issues/148169"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/148170",
"url": "https://github.com/python/cpython/pull/148170"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/"
}
],
"release_date": "2026-04-13T21:52:19.036000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API"
},
{
"acknowledgments": [
{
"names": [
"Elhanan Haenel"
]
}
],
"cve": "CVE-2026-5121",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2026-03-30T07:40:25.358335+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452945"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: An integer overflow flaw in `libarchive` on 32-bit systems can lead to a heap buffer overflow. This vulnerability occurs when processing a specially crafted ISO9660 image, allowing an attacker to potentially execute arbitrary code. Red Hat Enterprise Linux 64-bit systems are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5121"
},
{
"category": "external",
"summary": "RHBZ#2452945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452945"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5121",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5121"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc",
"url": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2934",
"url": "https://github.com/libarchive/libarchive/pull/2934"
}
],
"release_date": "2026-03-30T07:44:15.222000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid processing untrusted ISO9660 images with applications that utilize `libarchive`. Users should only extract or read content from ISO images obtained from trusted sources.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing"
},
{
"cve": "CVE-2026-6100",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2026-04-13T18:01:31.970255+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2457932"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Python\u0027s decompression modules, including `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile`. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is experiencing high memory usage. Exploitation of this flaw could potentially allow an attacker to execute arbitrary code or access sensitive data. The vulnerability is only present if the program re-uses decompressor instances across multiple decompression calls even after a `MemoryError` is raised during decompression. Using the helper functions to one-shot decompress data such as `lzma.decompress()`, `bz2.decompress()`, `gzip.decompress()`, and `zlib.decompress()` are not affected as a new decompressor instance is used per call. If the decompressor instance is not re-used after an error condition, this usage is similarly not vulnerable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this flaw is somewhat mitigated on Red Hat platforms. By default processes are not executed with root user privilege and are limited in their scope which in turn limits the impact of this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6100"
},
{
"category": "external",
"summary": "RHBZ#2457932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457932"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6100",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6100"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6100",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6100"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d",
"url": "https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2",
"url": "https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20",
"url": "https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/148395",
"url": "https://github.com/python/cpython/issues/148395"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/148396",
"url": "https://github.com/python/cpython/pull/148396"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/"
}
],
"release_date": "2026-04-13T17:15:47.606000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"known_not_affected": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27135",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2026-03-18T19:02:13.823002+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448754"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27135"
},
{
"category": "external",
"summary": "RHBZ#2448754",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448754"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27135"
},
{
"category": "external",
"summary": "https://github.com/nghttp2/nghttp2/commit/5c7df8fa815ac1004d9ecb9d1f7595c4d37f46e1",
"url": "https://github.com/nghttp2/nghttp2/commit/5c7df8fa815ac1004d9ecb9d1f7595c4d37f46e1"
},
{
"category": "external",
"summary": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6",
"url": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6"
}
],
"release_date": "2026-03-18T17:59:02.045000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination"
},
{
"cve": "CVE-2026-28417",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-02-27T22:01:53.728412+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2443455"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Vim, an open-source command-line text editor. Specifically, an operating system (OS) command injection vulnerability exists in the `netrw` standard plugin. A remote attacker could exploit this by tricking a user into opening a specially crafted URL, such as one using the `scp://` protocol handler. Successful exploitation allows the attacker to execute arbitrary shell commands with the same privileges as the Vim process, leading to potential system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The risk posed by this vulnerability is limited on Red Hat products due to user and system isolation features which are enabled by default. The impacts of this flaw will be limited by the active user\u0027s permissions and access control limits. Host systems are not at risk when following Red Hat guidelines and the root user account is not actively executing Vim.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-28417"
},
{
"category": "external",
"summary": "RHBZ#2443455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-28417",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-28417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28417"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/commit/79348dbbc09332130f4c860",
"url": "https://github.com/vim/vim/commit/79348dbbc09332130f4c860"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/releases/tag/v9.2.0073",
"url": "https://github.com/vim/vim/releases/tag/v9.2.0073"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/security/advisories/GHSA-m3xh-9434-g336",
"url": "https://github.com/vim/vim/security/advisories/GHSA-m3xh-9434-g336"
}
],
"release_date": "2026-02-27T21:54:35.196000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin"
},
{
"cve": "CVE-2026-28421",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2026-02-27T23:01:44.673504+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2443474"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Vim. This vulnerability, a heap-buffer-overflow and a segmentation fault, exists in the swap file recovery logic. A local attacker could exploit this by providing a specially crafted swap file. This could lead to a denial of service (DoS) or potentially information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vim: Vim: Denial of service and information disclosure via crafted swap file",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The risk posed by this vulnerability is limited on Red Hat products due to user and system isolation features which are enabled by default. The impacts of this flaw will be limited by the active user\u0027s permissions and access control limits. Host systems are not at risk when following Red Hat guidelines and the root user account is not actively executing Vim.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-28421"
},
{
"category": "external",
"summary": "RHBZ#2443474",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443474"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-28421",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28421"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-28421",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28421"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/commit/65c1a143c331c886dc28",
"url": "https://github.com/vim/vim/commit/65c1a143c331c886dc28"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/releases/tag/v9.2.0077",
"url": "https://github.com/vim/vim/releases/tag/v9.2.0077"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/security/advisories/GHSA-r2gw-2x48-jj5p",
"url": "https://github.com/vim/vim/security/advisories/GHSA-r2gw-2x48-jj5p"
}
],
"release_date": "2026-02-27T22:06:34.312000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vim: Vim: Denial of service and information disclosure via crafted swap file"
},
{
"cve": "CVE-2026-33412",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-03-24T20:02:21.511965+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2450907"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Vim. By including a newline character in a pattern passed to Vim\u0027s glob() function, an attacker may be able to execute arbitrary shell commands. This command injection vulnerability allows for arbitrary code execution, depending on the user\u0027s shell settings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vim: Vim: Arbitrary code execution via command injection in glob() function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33412"
},
{
"category": "external",
"summary": "RHBZ#2450907",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450907"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33412",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33412"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33412",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33412"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/commit/645ed6597d1ea896c712cd7ddbb6edee79577e9a",
"url": "https://github.com/vim/vim/commit/645ed6597d1ea896c712cd7ddbb6edee79577e9a"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/releases/tag/v9.2.0202",
"url": "https://github.com/vim/vim/releases/tag/v9.2.0202"
},
{
"category": "external",
"summary": "https://github.com/vim/vim/security/advisories/GHSA-w5jw-f54h-x46c",
"url": "https://github.com/vim/vim/security/advisories/GHSA-w5jw-f54h-x46c"
}
],
"release_date": "2026-03-24T19:43:07.219000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:26:51+00:00",
"details": "Please consult the RHUI Technology Preview Release Notes at https://access.redhat.com/articles/7141172\nfor instructions on how to use this image set.",
"product_ids": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11768"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/cds-kubernetes-tp-rhel9@sha256:9c099abe9fe9f06816a9ddd95c8123bd2909e66aa31b05ce5a143495efedd274_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/installer-tp-rhel9@sha256:9827772c3fffde2b94ac6758eb146209973bb09bd86980e02cd0cafa66f4aa3e_amd64",
"Red Hat Update Infrastructure 5:registry.redhat.io/rhui5/rhua-tp-rhel9@sha256:1debabb74204bd06904737367b77cb42ab5d69e73da5c051e74e8dbc7e6719fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "vim: Vim: Arbitrary code execution via command injection in glob() function"
}
]
}
RHSA-2026:11800
Vulnerability from csaf_redhat - Published: 2026-04-29 15:26 - Updated: 2026-07-02 13:38The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le | — |
Workaround
|
lz4_flex is a pure Rust implementation of LZ4 compression/decompression. In versions 0.11.5 and below, and 0.12.0, decompressing invalid LZ4 data can leak sensitive information from uninitialized memory or from previous decompression operations. The library fails to properly validate offset values during LZ4 "match copy operations," allowing out-of-bounds reads from the output buffer. The block-based API functions (`decompress_into`, `decompress_into_with_dict`, and others when `safe-decode` is disabled) are affected, while all frame APIs are unaffected. The impact is potential exposure of sensitive data and secrets through crafted or malformed LZ4 input. This issue has been fixed in versions 0.11.6 and 0.12.1.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Logging for Red Hat OpenShift - 6.2.10",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Logging 6.2.10 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11800",
"url": "https://access.redhat.com/errata/RHSA-2026:11800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32829",
"url": "https://access.redhat.com/security/cve/CVE-2026-32829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11800.json"
}
],
"title": "Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.10",
"tracking": {
"current_release_date": "2026-07-02T13:38:03+00:00",
"generator": {
"date": "2026-07-02T13:38:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11800",
"initial_release_date": "2026-04-29T15:26:45+00:00",
"revision_history": [
{
"date": "2026-04-29T15:26:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T15:26:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:38:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Logging Subsystem for Red Hat OpenShift 6.2",
"product": {
"name": "Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:6.2::el9"
}
}
}
],
"category": "product_family",
"name": "Logging Subsystem for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894039"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256%3A17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776897517"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3Aca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800079"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3Afc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800323"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1777046400"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256%3Ada1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1777047122"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800125"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Ab33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894389"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3Acf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894039"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3A328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Ab45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800079"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800323"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1777046400"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800125"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894389"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894039"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3A450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800079"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3Aaff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800323"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1777046400"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Aa7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800125"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894389"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894039"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3Afe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800087"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800079"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3Abec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800323"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1777046400"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Ae0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800125"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776800128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3Acc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1776894389"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.2",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T15:26:45+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/ocp-4-18-release-notes\n\nFor Red Hat OpenShift Logging 6.2.10, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.2",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11800"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T15:26:45+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/ocp-4-18-release-notes\n\nFor Red Hat OpenShift Logging 6.2.10, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.2",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11800"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32829",
"cwe": {
"id": "CWE-823",
"name": "Use of Out-of-range Pointer Offset"
},
"discovery_date": "2026-03-16T22:05:38.553414+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448271"
}
],
"notes": [
{
"category": "description",
"text": "lz4_flex is a pure Rust implementation of LZ4 compression/decompression. In versions 0.11.5 and below, and 0.12.0, decompressing invalid LZ4 data can leak sensitive information from uninitialized memory or from previous decompression operations. The library fails to properly validate offset values during LZ4 \"match copy operations,\" allowing out-of-bounds reads from the output buffer. The block-based API functions (`decompress_into`, `decompress_into_with_dict`, and others when `safe-decode` is disabled) are affected, while all frame APIs are unaffected. The impact is potential exposure of sensitive data and secrets through crafted or malformed LZ4 input. This issue has been fixed in versions 0.11.6 and 0.12.1.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lz4_flex: lz4_flex\u0027s decompression can leak information from uninitialized memory or reused output buffer",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In RHEL 9 and RHEL 10, this vulnerability presents minimal risk as the rust-analyzer component operates in a \"closed loop,\" strictly decompressing its own internal database. Because it does not process external or untrusted data, exploitation requires an attacker to already possess local access and sufficient privileges to tamper with the internal cache files on disk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32829"
},
{
"category": "external",
"summary": "RHBZ#2448271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32829"
},
{
"category": "external",
"summary": "https://github.com/PSeitz/lz4_flex",
"url": "https://github.com/PSeitz/lz4_flex"
},
{
"category": "external",
"summary": "https://github.com/PSeitz/lz4_flex/commit/055502ee5d297ecd6bf448ac91c055c7f6df9b6d",
"url": "https://github.com/PSeitz/lz4_flex/commit/055502ee5d297ecd6bf448ac91c055c7f6df9b6d"
},
{
"category": "external",
"summary": "https://github.com/PSeitz/lz4_flex/security/advisories/GHSA-vvp9-7p8x-rfvv",
"url": "https://github.com/PSeitz/lz4_flex/security/advisories/GHSA-vvp9-7p8x-rfvv"
}
],
"release_date": "2026-03-16T20:48:08+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T15:26:45+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/ocp-4-18-release-notes\n\nFor Red Hat OpenShift Logging 6.2.10, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.2",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11800"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:17353255c31e79c2ec45de5367019e0fb30570a1cc3cff6be170199eeb18e4dc_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7fd22572f12bbc2029f24eb623eb814747500b436c1c9d303fe7c6e875006000_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:8f625e3b3961e05ded9032076f88bfa4bdbb6dc5d64bb4a9a03284cc64ade3da_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:9a0ebc5fb636a3eb613eba828db0a52f95582533a15c121b01346fb55d335b49_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:cf63b1d43e799bf2fccf11c2f5ff1e8dabd407a4ed3174ebceb91a7b15ea33d8_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:328340d4d482b06ab444f435aeb9c2a43ac7177ecd1ab8eec297c56aa6467203_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:450a1302db3b38b2f63645dccd1d992a4b61e42fb375f49cd62d2af292fb54ac_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:ca54850f60fc615b3ff7f04399173853722a42845e9a7ebae5c50e9659eab90e_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:fe6e806f9e3dcfdf75897f769bd0ddca5d6f2333bf8d7109a8883c55f1473273_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:54e5b1a076008e32574ddff8fc3a3ea9aa8cfb3c2ba2d2736c39906f15b1350d_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:760d23df05d5ed4a370401c5bc0485ba9479312ef6628445995bfa4710b0b18b_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:932962c0efa367e1b09b66deda20d58093321e376efb4fc8a99cae97854cf71b_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b45be7ff7e4e9dd659de7573c01d22db97341e7b12a2306e35b0ed0db5c1b966_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:303dbc8494a46ed4eb24a4e6ee503a5f3e791bbcd45af2576e111855514c17a9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:aff23731ba90a17219df3a56a571904ac9267c43f6def4d049236d152b704254_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:bec80cde1b5262108ffa3c684a81d090de850114a68d049c651a6d05542b7468_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:fc0dee9a5f93e89a7225149766f1976cb67be1459456c9367dba48c3df3dad36_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:da1df9b6504750ba6c7b2187c3f4cfe9e8da8bdd32daa3fd1f7b84cc285c6394_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:454bdee681a24666732fc98764d799f54446031730e408648397713f58d73c7a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:80679c65e340cced2aca6458ecfbe04f85171e0c066a39e93d44e38e444daeb1_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:83f22ad20ad1e6c123a4f26de43095274fa4fd55d396b3bb5f74f8e2b73b01ee_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:892c5dcdf43882b275d59c7997cddff4a319394327ea7b5d16a074c70d7fe059_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:35b016e136391b2377744cfaffdf5ea5a0bfb5cd83a24003d1f4468859520693_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5eea261a9be54be482073d8f58ac09e599d7bb0a01255e0966a1a34b9b306788_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a7c2417f3fd6e2e421a9551b061d90badbe0b7971282ab002d71cccd8c3bc739_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:e0ae5996726af5675dc84217f220fd12c5c7a3af069ae0a5e0c985aa1efc40b9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:0301de23e37b680cfb4f7c7b737303f1564b5a947282590ad32c521834b0453f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:04b6062eedba3c57e099187cb627186f34f48a09df81576bbea7ac2a3e57936e_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:7d3c287d9ac66d905624f5aefc5fe9eeadbff7868c1c31832aff74a8a0673216_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:b33fa7578442868a978b18d9219b9deef2d30978b3788051dc7c86989f260a85_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0f703f41cee495656dcadaa90199357d748c39d56fd3d6399593337f4912dbe6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:4898ca8913283a0f681bbadb88b6e568c2e94a11b2087301b4ad9075f6a1ac59_s390x",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:662a7b86e69fd80fb0af5acb48ced5d889a8892548a995c7c2d6dfbf70495589_arm64",
"Logging Subsystem for Red Hat OpenShift 6.2:registry.redhat.io/openshift-logging/vector-rhel9@sha256:cc059bf2fb6382711eb55bae8cd61e5b69304f97758ce073bc0de915a531f6cd_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lz4_flex: lz4_flex\u0027s decompression can leak information from uninitialized memory or reused output buffer"
}
]
}
RHSA-2026:11856
Vulnerability from csaf_redhat - Published: 2026-04-29 17:11 - Updated: 2026-07-02 15:34No description is available for this CVE.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a "slice bounds out of range panic", resulting in a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12.17 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12.17",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11856",
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27459",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29074",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32286",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4427",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11856.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12.17",
"tracking": {
"current_release_date": "2026-07-02T15:34:00+00:00",
"generator": {
"date": "2026-07-02T15:34:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11856",
"initial_release_date": "2026-04-29T17:11:19+00:00",
"revision_history": [
{
"date": "2026-04-29T17:11:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T17:11:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T15:34:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776698050"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697488"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Acba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776698909"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697573"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Adbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776698050"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Ac5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776798011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3Ae2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776888642"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Aa696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776887968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776752646"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aaf6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697488"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ab615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697573"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776798011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ad682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776887968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ab64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776752646"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697488"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697573"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776798011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776887968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776752646"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697488"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697573"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776798011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776697568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776887968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ae7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776752646"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-4427",
"discovery_date": "2026-03-18T14:02:19.414820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"notes": [
{
"category": "description",
"text": "No description is available for this CVE.",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "This CVE has been marked as Rejected by the assigning CNA.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4427",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4427"
}
],
"release_date": "2026-03-18T13:00:31+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
}
],
"title": "github.com/jackc/pgproto3: pgproto3: Denial of Service via negative field length in DataRow message"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27459",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2026-03-18T00:01:41.404915+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448503"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pyOpenSSL: DTLS cookie callback buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is only exploitable when an application using the pyOpenSSL library provides a custom callback to the set_cookie_generate_callback function. For the buffer overflow to occur, the callback function must return a cookie string or byte sequence longer than 256 bytes, limiting the exposure of this issue. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "RHBZ#2448503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27459",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst",
"url": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408",
"url": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4",
"url": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4"
}
],
"release_date": "2026-03-17T23:34:28.483000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "To mitigate this flaw, ensure the callback provided to the set_cookie_generate_callback function strictly limits the returned cookie string or byte sequence to under 256 bytes.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pyOpenSSL: DTLS cookie callback buffer overflow"
},
{
"cve": "CVE-2026-29074",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445132"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application\u0027s failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "svgo: SVGO: Denial of Service via XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "RHBZ#2445132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445132"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673",
"url": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673"
}
],
"release_date": "2026-03-06T07:23:05.716000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "svgo: SVGO: Denial of Service via XML entity expansion"
},
{
"cve": "CVE-2026-32286",
"cwe": {
"id": "CWE-1285",
"name": "Improper Validation of Specified Index, Position, or Offset in Input"
},
"discovery_date": "2026-03-26T20:01:59.226117+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451847"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a \"slice bounds out of range panic\", resulting in a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The PostgreSQL server multicluster-globalhub-manager connects to is either provisioned by the operator itself or specified by the admin managing the deployment. To successfully exploit the vulnerability in this context the attacker would need to compromise the operator-deployed PostgreSQL server to force a crafted malicious DataRow message or they would need to have the privileges required to modify the operator-provisioned deployment or configure globalhub-manager to use a compromised/malicious \u201cBYO Postgres\u201d server.\n\nThe first scenario (compromising a legitimate PostgreSQL server) would change Attack Complexity from Low to High resulting in an adjusted CVSS v3.1 score of 5.9 (Moderate)\nThe other scenarios (manipulating the operator provisioned-deployment or configuring the globalhub-manager to use a malicious server) would maintain AC:L but would require privileged access. This would change Privileges Required from None to High resulting in an adjusted CVSS v3.1 score of 4.9 (Moderate)\n\nBased on the above the Impact Rating for multicluster-globalhub-manager-rhel9 is Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "RHBZ#2451847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451847"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32286",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://github.com/golang/vulndb/issues/4518",
"url": "https://github.com/golang/vulndb/issues/4518"
},
{
"category": "external",
"summary": "https://github.com/jackc/pgx/issues/2507",
"url": "https://github.com/jackc/pgx/issues/2507"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4518",
"url": "https://pkg.go.dev/vuln/GO-2026-4518"
}
],
"release_date": "2026-03-26T19:40:51.974000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T17:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:53d2838548e77931e94f9bcd85e941fb694b28a3585d280ddcb761344d2845e6_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:65503333e10391dca7854bd07dc161288cc00b1a722533e42af1e2c4c3c0afeb_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:8185411ec370b562124ed94598c1dc5128f7b4eba2612d59a0b0b5c767a2a697_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d682a5dd2a55034acfd3fe24b70526d1f514cf7e058aa51505d72537045cf3be_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:cba47e962ec1b6b6f68cea1b231e4a69f8e8ec25067b6e603ebeb268c9fc1ee0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2195b3586d18555507672ce46cbe7ca44fc89271217f4d10c4a0f709d63a2ad9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4454746edc32128a37ab4be8b97c99b87fd8d85fc2199a2d80834ff72f9790d5_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b615e4d4f9d80660cd340c20df280f0387049f5940f7bb2812d2e3bf325a12f9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ff9ba83cb0a4505d9bfbd5b0826400b0d3685572e8f599a2813f1462c8a2c310_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:dbdd7ba0477474b50810b0950c8e50171b2327f81ad14ff02ba34cb69885cd45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:523a51c7c519af386cdaebb7e67971f0a05a7b31fb6683be852a291aada8201a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7ce1aebe1c0916ab52b66902127625b13c19231ffd67b24c8606a0131f19d4f9_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e02861c489702fb5b0ecb60c8b4e9bb6a14a5f026ceee9fee482891cf7dd61e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:c5fdf182c5b34b44e21971af93272ac07a2521c3d496b6d92c0a3a7afe3bd362_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7551505ec9af37fd96ad9a226a475d3d7169eb7d861c4f45cd490ff1f0fae1d3_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:64b287be516147f19f83fe4ac93471de19a8bcc1e3489d7298b734ec26d45aab_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:943fe18122c39717e8874df366a9d8cb2e98572e62af6773445b6328b38b9b0e_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:af6903e508dc41730b05d855d363f53c0e8efcb327429b59cbca959a9cc6aaf1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ee5eec8ed546799aa60d3181f45810632ce280a310a0f75fa847d8cfa0a7690d_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:e2e10580ca1783ac80ea08851c21f4accaa284951d7a909a59d3484ec3077163_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:0578be0cbc9bbbdd5bf86e5bbc15d1741f654af7149efdf184d300f6a3c0b86a_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:18da4574e93bb4cdf09757ad095257912cfdf8506546d83b2f705fbb9d067282_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:2a5eb683e47b2f8e1d02546ff6a640c984e71a9e657112243da082aea47d7af8_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:a696f5af8140d39bf5528d1efc1affab93050fb764c0e6d09c61f819375be139_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:3c87ef209deb488a3c37626273123280364972c155ae53d986fbc784bf219892_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:6af0be7e815a0c1db832025550381df8869a824393be8025d4cceb7e610619e9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:b64f0e80cebf4fe945fa945a9df2796c463cb3026a7cfd32e9ab2fc98528b7d3_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e7316f47c02a052e731b15ee00e9bb0ed4a9a1dd19f5b2423150e83ebcb010dd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:11916
Vulnerability from csaf_redhat - Published: 2026-04-29 21:18 - Updated: 2026-07-02 15:34No description is available for this CVE.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a "slice bounds out of range panic", resulting in a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.10.21 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.10.21",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11916",
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27459",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29063",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29074",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32286",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4427",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11916.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.10.21",
"tracking": {
"current_release_date": "2026-07-02T15:34:01+00:00",
"generator": {
"date": "2026-07-02T15:34:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11916",
"initial_release_date": "2026-04-29T21:18:39+00:00",
"revision_history": [
{
"date": "2026-04-29T21:18:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T21:18:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T15:34:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.10",
"product": {
"name": "Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3Adb1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776785871"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Aa85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776785891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784548"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776706008"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1777302567"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1777303274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Adcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776736910"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784548"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1777302567"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776736910"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aa39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776784548"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1777302567"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Abf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908884"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776736910"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-4427",
"discovery_date": "2026-03-18T14:02:19.414820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"notes": [
{
"category": "description",
"text": "No description is available for this CVE.",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "This CVE has been marked as Rejected by the assigning CNA.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4427",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4427"
}
],
"release_date": "2026-03-18T13:00:31+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
}
],
"title": "github.com/jackc/pgproto3: pgproto3: Denial of Service via negative field length in DataRow message"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27459",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2026-03-18T00:01:41.404915+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448503"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pyOpenSSL: DTLS cookie callback buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is only exploitable when an application using the pyOpenSSL library provides a custom callback to the set_cookie_generate_callback function. For the buffer overflow to occur, the callback function must return a cookie string or byte sequence longer than 256 bytes, limiting the exposure of this issue. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "RHBZ#2448503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27459",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst",
"url": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408",
"url": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4",
"url": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4"
}
],
"release_date": "2026-03-17T23:34:28.483000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "To mitigate this flaw, ensure the callback provided to the set_cookie_generate_callback function strictly limits the returned cookie string or byte sequence to under 256 bytes.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pyOpenSSL: DTLS cookie callback buffer overflow"
},
{
"cve": "CVE-2026-29063",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-03-06T19:00:57.982727+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445291"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this vulnerability requires that an attacker is able to provide arbitrary data to clients of this library in a way that calls the affected functions with data the attacker controls. In most deployments, the ability to provide data in this fashion requires that an attacker has some degree of privileges to access the affected applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "RHBZ#2445291",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445291"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw",
"url": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw"
}
],
"release_date": "2026-03-06T18:25:22.438000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution"
},
{
"cve": "CVE-2026-29074",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445132"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application\u0027s failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "svgo: SVGO: Denial of Service via XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "RHBZ#2445132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445132"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673",
"url": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673"
}
],
"release_date": "2026-03-06T07:23:05.716000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "svgo: SVGO: Denial of Service via XML entity expansion"
},
{
"cve": "CVE-2026-32286",
"cwe": {
"id": "CWE-1285",
"name": "Improper Validation of Specified Index, Position, or Offset in Input"
},
"discovery_date": "2026-03-26T20:01:59.226117+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451847"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a \"slice bounds out of range panic\", resulting in a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The PostgreSQL server multicluster-globalhub-manager connects to is either provisioned by the operator itself or specified by the admin managing the deployment. To successfully exploit the vulnerability in this context the attacker would need to compromise the operator-deployed PostgreSQL server to force a crafted malicious DataRow message or they would need to have the privileges required to modify the operator-provisioned deployment or configure globalhub-manager to use a compromised/malicious \u201cBYO Postgres\u201d server.\n\nThe first scenario (compromising a legitimate PostgreSQL server) would change Attack Complexity from Low to High resulting in an adjusted CVSS v3.1 score of 5.9 (Moderate)\nThe other scenarios (manipulating the operator provisioned-deployment or configuring the globalhub-manager to use a malicious server) would maintain AC:L but would require privileged access. This would change Privileges Required from None to High resulting in an adjusted CVSS v3.1 score of 4.9 (Moderate)\n\nBased on the above the Impact Rating for multicluster-globalhub-manager-rhel9 is Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "RHBZ#2451847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451847"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32286",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://github.com/golang/vulndb/issues/4518",
"url": "https://github.com/golang/vulndb/issues/4518"
},
{
"category": "external",
"summary": "https://github.com/jackc/pgx/issues/2507",
"url": "https://github.com/jackc/pgx/issues/2507"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4518",
"url": "https://pkg.go.dev/vuln/GO-2026-4518"
}
],
"release_date": "2026-03-26T19:40:51.974000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T21:18:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:0a65832e2056a4f317afc7aaffa870418a67a5c8216787469d5845e7b9e1da56_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:62c33fd8160ec9f5ca795496c302f9ab708167a784f56422705e42a73eaa69fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:77f795c922f07ccdb237e98bc0184c2b63e640bb9fb71c183b00ece2d4d423f7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:a85190ee795f8fa1e9324af5e0af259ab69fa3a05272a5bb5f4076d372fd5fd1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2aa45808282b59093c37870eee91e90f3ea0f5505a2c3081044426afc1b24c43_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:57a8db4bfcc0f507fc46e9e0f379bb85558431940861d5ccf7d67c28b4ce70d6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:628fb2f45f9ae0a1f7ade369ddb11aaf19e849914df3e1602a72bbd747c39403_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0349e3a25a20874671f34ded49ea0a692a4ccff726ae9a7c212134edd5684aa6_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:3ef001da349fb2880c5b4c7b2b480d84497d2d7b06d5f88b434a5867b15831ea_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:762a843c527f3eae162e4bedee20f88b2df2919499bc07ee156ed6e575673a2b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9d564610e1019680260e701955356a2fbd14de32a46506128208c1ebc6771e0e_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:db1bd588d96d3eff25fce96b0e6d78d042b6041b0bb31a64f4683df65b3af5e3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5845f4f7c9d013682cf2605a766aeb698e41934f85e3cf4f40a39f95036d2778_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7e32adf6e8872a6b867d64020b03c1ed4ecbb4079539c3f66e85a595704b008d_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a39cdaf818b6cc9fcb1c780a82c39b1f8d7f00dcb5f4ecdf5795cd7452f56203_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:77dbe735cb007c4cb31d0d01e26aa46f7014ea4089b72630d206526605b78e52_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:489446f0c5a57d9d6bcdb7b0ccba2db6c5f961693bc0c95cda02a6ee52a718ae_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:7c05bf2bab975c345fbb1f54c74ce00b512a7780262087ffeb5e18e39d357e2e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:bf747665d8f980936633273351381207f0db7e5a920f6c1745dd1282f9a7a7a7_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:1f42a9088fd931804a16d6170c2d65a1a49b2433e906d3e3ac59f5169793ae8d_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:82890320e84c3be368d5f7e4b76fb99d6a20340cd5c3b2809e3e23cabc76bc7b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:dcf424eb353016ba6d2751052099542b330f99ea8ee0540431e50a8df5628263_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:11996
Vulnerability from csaf_redhat - Published: 2026-04-30 01:20 - Updated: 2026-07-02 15:34No description is available for this CVE.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
Workaround
|
A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
Workaround
|
A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a "slice bounds out of range panic", resulting in a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.9.21 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.9.21",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11996",
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27459",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32286",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4427",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11996.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.9.21",
"tracking": {
"current_release_date": "2026-07-02T15:34:01+00:00",
"generator": {
"date": "2026-07-02T15:34:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11996",
"initial_release_date": "2026-04-30T01:20:06+00:00",
"revision_history": [
{
"date": "2026-04-30T01:20:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T01:20:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T15:34:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.9",
"product": {
"name": "Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776963375"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776962931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Ad201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776956601"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776956008"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705943"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1777327525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1777328140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908959"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1776782369"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aa0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776962931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776956008"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1777327525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ab8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908959"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1776782369"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ad18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776962931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776956008"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Ac2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1777327525"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Abad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776705534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776908959"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1776782369"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-4427",
"discovery_date": "2026-03-18T14:02:19.414820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"notes": [
{
"category": "description",
"text": "No description is available for this CVE.",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "This CVE has been marked as Rejected by the assigning CNA.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4427",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4427"
}
],
"release_date": "2026-03-18T13:00:31+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
}
],
"title": "github.com/jackc/pgproto3: pgproto3: Denial of Service via negative field length in DataRow message"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27459",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2026-03-18T00:01:41.404915+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448503"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyOpenSSL. The set_cookie_generate_callback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a fixed-size buffer provided by the underlying OpenSSL library.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pyOpenSSL: DTLS cookie callback buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is only exploitable when an application using the pyOpenSSL library provides a custom callback to the set_cookie_generate_callback function. For the buffer overflow to occur, the callback function must return a cookie string or byte sequence longer than 256 bytes, limiting the exposure of this issue. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27459"
},
{
"category": "external",
"summary": "RHBZ#2448503",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448503"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27459",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27459"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst",
"url": "https://github.com/pyca/pyopenssl/blob/358cbf29c4e364c59930e53a270116249581eaa3/CHANGELOG.rst"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408",
"url": "https://github.com/pyca/pyopenssl/commit/57f09bb4bb051d3bc2a1abd36e9525313d5cd408"
},
{
"category": "external",
"summary": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4",
"url": "https://github.com/pyca/pyopenssl/security/advisories/GHSA-5pwr-322w-8jr4"
}
],
"release_date": "2026-03-17T23:34:28.483000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "workaround",
"details": "To mitigate this flaw, ensure the callback provided to the set_cookie_generate_callback function strictly limits the returned cookie string or byte sequence to under 256 bytes.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pyOpenSSL: DTLS cookie callback buffer overflow"
},
{
"cve": "CVE-2026-32286",
"cwe": {
"id": "CWE-1285",
"name": "Improper Validation of Specified Index, Position, or Offset in Input"
},
"discovery_date": "2026-03-26T20:01:59.226117+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451847"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a \"slice bounds out of range panic\", resulting in a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The PostgreSQL server multicluster-globalhub-manager connects to is either provisioned by the operator itself or specified by the admin managing the deployment. To successfully exploit the vulnerability in this context the attacker would need to compromise the operator-deployed PostgreSQL server to force a crafted malicious DataRow message or they would need to have the privileges required to modify the operator-provisioned deployment or configure globalhub-manager to use a compromised/malicious \u201cBYO Postgres\u201d server.\n\nThe first scenario (compromising a legitimate PostgreSQL server) would change Attack Complexity from Low to High resulting in an adjusted CVSS v3.1 score of 5.9 (Moderate)\nThe other scenarios (manipulating the operator provisioned-deployment or configuring the globalhub-manager to use a malicious server) would maintain AC:L but would require privileged access. This would change Privileges Required from None to High resulting in an adjusted CVSS v3.1 score of 4.9 (Moderate)\n\nBased on the above the Impact Rating for multicluster-globalhub-manager-rhel9 is Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32286"
},
{
"category": "external",
"summary": "RHBZ#2451847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451847"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32286",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286"
},
{
"category": "external",
"summary": "https://github.com/golang/vulndb/issues/4518",
"url": "https://github.com/golang/vulndb/issues/4518"
},
{
"category": "external",
"summary": "https://github.com/jackc/pgx/issues/2507",
"url": "https://github.com/jackc/pgx/issues/2507"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4518",
"url": "https://pkg.go.dev/vuln/GO-2026-4518"
}
],
"release_date": "2026-03-26T19:40:51.974000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T01:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:9830eae6b8589e5a4a2e50d201a33f6e9b64ac3b04d7d045d7fd812609fde97a_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:b8f34f08a7a695f6ccf9b88e6c2ce1f1cae76f98d9005588424b0ef8a58f4549_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:bad2d6be0381249da08576fc6e733dd51cb30a0997b17b512c19a39b0e30df08_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:d201aa07519a56ee384d8ce004ff97ff4dcade74fed273dd5e731a0ce249c021_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:6a8c24949c45070e83a5d492e7235969b2a241a37649baea8d8af48d8444f0db_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:787fc4e689380b857b2a4e62d2950952f97117b65cd84d033f2e8e8e9b28ef19_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:78aeb71e263279f23deaacb546676aa3739365e6581b3a2d8f1846339ec68f6f_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:8b22279c558993df180f6dce49f37a429804031963185415d70eafe4af1d5875_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:1b9ba50e0ed691c3f38bbfa1c979ad91ffbc618fea4ee91748412d941c53a5da_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:84a239c3762ffa42bde673f5e6715acabcafa67122ad8684b9c6672fc1300cea_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c2d65b2417e8c05886b3cb50c7696ae83e04418aebc4dc6f6c96ecebe39991ac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:9b37a43bac0c38e9b7debf427890b9b664d93b2ccd8c4298e860b7ee89ee3c43_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6e0d179df39acec2ac05188366be788a84d35613145c24054a90656712108fe5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a0d02b6a2c597aa278b5b512185ffc0dde7ea1769e1178907cd0dbe5b739309b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:d18d9c62d72faf3bf5388fa994dfe715a5f46d3a7ea5042952de7f1a750f297e_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:637054b16092a2f972f7da7c1d47c00f5f2ca670b464374d68cbeabd25db3889_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:048a42a26c19cbc973e36284a7a80018af580c97d7046bfc513e7cdfae45292f_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:132c4a7071f70729f971e7c258a60c8b2c6d6427adae3014acdb066fb3415cbb_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:3ae36f520f4560f23b7b4ecbe24fd9bfb6dc3199aaa0bed38dec7c381e5b4067_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2c3c6f149c673cfd68cb5cc62f75bb75480a8d4f4470a7de93191bca1cc0f253_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:593f1bf28190a411fde00fc5bedf5ca4059b0213b7c3e6455c205aa18ad7d7d5_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:9ad34f2c10bd76352bd771579118ffdcc2a2138a0d1aecae4867b5772cd56814_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.