Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-32280 (GCVE-0-2026-32280)
Vulnerability from cvelistv5 – Published: 2026-04-08 01:06 – Updated: 2026-07-10 12:05- CWE-770 - Allocation of Resources Without Limits or Throttling
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | crypto/x509 |
Affected:
0 , < 1.25.9
(semver)
Affected: 1.26.0-0 , < 1.26.2 (semver) |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 10 |
cpe:/a:redhat:ansible_automation_platform:2.6::el10 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10 |
|
| Red Hat | Red Hat Enterprise Linux Server (v. 7 ELS) |
cpe:/o:redhat:rhel_els:7 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 |
cpe:/a:redhat:ansible_automation_platform:2.5::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
cpe:/a:redhat:openshift:4.17::el8 cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
cpe:/a:redhat:openshift:4.18::el8 cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 8 |
cpe:/a:redhat:satellite:6.16::el8 cpe:/a:redhat:satellite_capsule:6.16::el8 cpe:/a:redhat:satellite_maintenance:6.16::el8 cpe:/a:redhat:satellite_utils:6.16::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.5::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9 |
|
| Red Hat | Cryostat 4 on RHEL 9 |
cpe:/a:redhat:cryostat:4::el9 |
|
| Red Hat | RHEM 1.0 for RHEL 9 |
cpe:/a:redhat:edge_manager:1.0::el9 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.19 |
cpe:/a:redhat:openshift:4.19::el8 cpe:/a:redhat:openshift:4.19::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 9 |
cpe:/a:redhat:satellite:6.16::el9 cpe:/a:redhat:satellite_capsule:6.16::el9 cpe:/a:redhat:satellite_maintenance:6.16::el9 cpe:/a:redhat:satellite_utils:6.16::el9 |
|
| Red Hat | Red Hat Satellite 6.19 for RHEL 9 |
cpe:/a:redhat:satellite:6.19::el9 cpe:/a:redhat:satellite_capsule:6.19::el9 cpe:/a:redhat:satellite_maintenance:6.19::el9 cpe:/a:redhat:satellite_utils:6.19::el9 |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.1 cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v.8.6) |
cpe:/a:redhat:rhel_aus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.6) |
cpe:/a:redhat:rhel_e4s:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.6) |
cpe:/a:redhat:rhel_tus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.4) |
cpe:/a:redhat:rhel_e4s:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 10) |
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 9) |
cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | Custom Metric Autoscaler 2.19 |
cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9 |
|
| Red Hat | HawtIO HawtIO 4.4.0 |
cpe:/a:redhat:apache_camel_hawtio:4.4::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.0 |
cpe:/a:redhat:logging:6.0::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.4 |
cpe:/a:redhat:logging:6.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.4.5 |
cpe:/a:redhat:multicluster_globalhub:1.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.5.4 |
cpe:/a:redhat:multicluster_globalhub:1.5::el9 |
|
| Red Hat | Multicluster Global Hub 1.6.2 |
cpe:/a:redhat:multicluster_globalhub:1.6::el9 |
|
| Red Hat | Network Observability (NETOBSERV) 1.11.2 |
cpe:/a:redhat:network_observ_optr:1.11::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.4 |
cpe:/a:redhat:openshift_api_data_protection:1.4::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.5 |
cpe:/a:redhat:openshift_api_data_protection:1.5::el9 |
|
| Red Hat | OpenShift Compliance Operator 1 |
cpe:/a:redhat:openshift_compliance_operator:1::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.14 |
cpe:/a:redhat:acm:2.14::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.10 |
cpe:/a:redhat:advanced_cluster_security:4.10::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 |
|
| Red Hat | Red Hat Developer Hub 1.8 |
cpe:/a:redhat:rhdh:1.8::el9 |
|
| Red Hat | Red Hat Developer Hub 1.9 |
cpe:/a:redhat:rhdh:1.9::el9 |
|
| Red Hat | Red Hat Edge Manager 1.0 |
cpe:/a:redhat:edge_manager:1.0::el9 |
|
| Red Hat | Red Hat Lightspeed (formerly Insights) for Runtimes 1 |
cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9 |
|
| Red Hat | Red Hat OpenShift AI 2.25 |
cpe:/a:redhat:openshift_ai:2.25::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.7.4 |
cpe:/a:redhat:openshift_builds:1.7::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces 3.28 |
cpe:/a:redhat:openshift_devspaces:3.28::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 2.6 |
cpe:/a:redhat:service_mesh:2.6::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.1 |
cpe:/a:redhat:service_mesh:3.1::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.2 |
cpe:/a:redhat:service_mesh:3.2::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.3 |
cpe:/a:redhat:service_mesh:3.3::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3 |
cpe:/a:redhat:service_mesh:3.0::el9 |
|
| Red Hat | Red Hat OpenShift distributed tracing 3.9.3 |
cpe:/a:redhat:openshift_distributed_tracing:3.9::el9 |
|
| Red Hat | Red Hat OpenStack 1.5 |
cpe:/a:redhat:stf:1.5::el9 |
|
| Red Hat | Red Hat Quay 3.10 |
cpe:/a:redhat:quay:3.10::el8 |
|
| Red Hat | Red Hat Quay 3.14 |
cpe:/a:redhat:quay:3.14::el8 |
|
| Red Hat | Red Hat Quay 3.15 |
cpe:/a:redhat:quay:3.15::el8 |
|
| Red Hat | Red Hat Quay 3.16 |
cpe:/a:redhat:quay:3.16::el9 |
|
| Red Hat | Red Hat Quay 3.17 |
cpe:/a:redhat:quay:3.17::el9 |
|
| Red Hat | Red Hat Quay 3.9 |
cpe:/a:redhat:quay:3.9::el8 |
|
| Red Hat | Red Hat Trusted Artifact Signer 1.3 |
cpe:/a:redhat:trusted_artifact_signer:1.3::el9 |
|
| Red Hat | Red Hat Web Terminal 1.11 |
cpe:/a:redhat:webterminal:1.11::el9 |
|
| Red Hat | Red Hat Web Terminal 1.12 |
cpe:/a:redhat:webterminal:1.12::el9 |
|
| Red Hat | Red Hat Web Terminal 1.13 |
cpe:/a:redhat:webterminal:1.13::el9 |
|
| Red Hat | Red Hat Web Terminal 1.14 |
cpe:/a:redhat:webterminal:1.14::el9 |
|
| Red Hat | Red Hat Web Terminal 1.15 |
cpe:/a:redhat:webterminal:1.15::el9 |
|
| Red Hat | mirror registry for Red Hat OpenShift 2.0 |
cpe:/a:redhat:mirror_registry:2.0::el8 |
|
| Red Hat | multicluster engine for Kubernetes 2.10 |
cpe:/a:redhat:multicluster_engine:2.10::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.11 |
cpe:/a:redhat:multicluster_engine:2.11::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.17 |
cpe:/a:redhat:multicluster_engine:2.17::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.6 |
cpe:/a:redhat:multicluster_engine:2.6::el8 |
|
| Red Hat | multicluster engine for Kubernetes 2.8 |
cpe:/a:redhat:multicluster_engine:2.8::el8 |
|
| Red Hat | Assisted Installer for Red Hat OpenShift Container Platform 2 |
cpe:/a:redhat:assisted_installer:2 |
|
| Red Hat | cert-manager Operator for Red Hat OpenShift |
cpe:/a:redhat:cert_manager:1 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Deployment Validation Operator |
cpe:/a:redhat:deployment_validator_operator |
|
| Red Hat | External Secrets Operator for Red Hat OpenShift |
cpe:/a:redhat:external_secrets_operator:1 |
|
| Red Hat | ExternalDNS Operator |
cpe:/a:redhat:ext_dns_optr:1 |
|
| Red Hat | Fence Agents Remediation Operator |
cpe:/a:redhat:workload_availability_far:0 |
|
| Red Hat | File Integrity Operator |
cpe:/a:redhat:openshift_file_integrity_operator:1 |
|
| Red Hat | Gatekeeper 3 |
cpe:/a:redhat:gatekeeper:3 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift |
cpe:/a:redhat:logging:5 |
|
| Red Hat | Logical Volume Manager Storage |
cpe:/a:redhat:lvms:4 |
|
| Red Hat | Machine Deletion Remediation Operator |
cpe:/a:redhat:workload_availability_mdr:0 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | mirror registry for Red Hat OpenShift |
cpe:/a:redhat:mirror_registry:1 |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | Red Hat 3scale API Management Platform 2 |
cpe:/a:redhat:red_hat_3scale_amp:2 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 |
cpe:/a:redhat:acm:2 |
|
| Red Hat | Red Hat AI Inference Server |
cpe:/a:redhat:ai_inference_server:3 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Connectivity Link 1 |
cpe:/a:redhat:connectivity_link:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux AI (RHEL AI) 3 |
cpe:/a:redhat:enterprise_linux_ai:3 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift Cluster Manager CLI |
cpe:/a:redhat:openshift_cluster_manager_cli:1 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Openshift Data Foundation 4 |
cpe:/a:redhat:openshift_data_foundation:4 |
|
| Red Hat | Red Hat OpenShift Dev Workspaces Operator |
cpe:/a:redhat:devworkspace |
|
| Red Hat | Red Hat OpenShift GitOps |
cpe:/a:redhat:openshift_gitops:1 |
|
| Red Hat | Red Hat OpenShift on AWS |
cpe:/a:redhat:openshift_service_on_aws:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Security Profiles Operator |
cpe:/a:redhat:openshift_security_profiles_operator:1 |
|
| Red Hat | Zero Trust Workload Identity Manager |
cpe:/a:redhat:zero_trust_workload_identity_manager:1 |
|
| Red Hat | Zero Trust Workload Identity Manager - Tech Preview |
cpe:/a:redhat:zero_trust_workload_identity_manager:0 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Node HealthCheck Operator |
cpe:/a:redhat:workload_availability_nhc:0 |
|
| Red Hat | OpenShift Service Mesh 2 |
cpe:/a:redhat:service_mesh:2 |
|
| Red Hat | OpenShift Service Mesh 3 |
cpe:/a:redhat:service_mesh:3 |
|
| Red Hat | Power monitoring for Red Hat OpenShift |
cpe:/a:redhat:openshift_power_monitoring |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Hardened Images |
cpe:/a:redhat:hummingbird:1 |
|
| Red Hat | Red Hat OpenShift for Windows Containers |
cpe:/a:redhat:windows_machine_config |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 2 |
cpe:/a:redhat:service_interconnect:2 |
|
| Red Hat | streams for Apache Kafka 3 |
cpe:/a:redhat:amq_streams:3 |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-32280",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-04-08T17:46:14.569488Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "CWE-770 Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-08T17:46:47.347Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el10",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_els:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.17::el8",
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.18::el8",
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el8",
"cpe:/a:redhat:satellite_capsule:6.16::el8",
"cpe:/a:redhat:satellite_maintenance:6.16::el8",
"cpe:/a:redhat:satellite_utils:6.16::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4::el9"
],
"defaultStatus": "affected",
"product": "Cryostat 4 on RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1.0::el9"
],
"defaultStatus": "affected",
"product": "RHEM 1.0 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1",
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.19::el8",
"cpe:/a:redhat:openshift:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el9",
"cpe:/a:redhat:satellite_capsule:6.16::el9",
"cpe:/a:redhat:satellite_maintenance:6.16::el9",
"cpe:/a:redhat:satellite_utils:6.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.19::el9",
"cpe:/a:redhat:satellite_capsule:6.19::el9",
"cpe:/a:redhat:satellite_maintenance:6.19::el9",
"cpe:/a:redhat:satellite_utils:6.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.19 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.1",
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9"
],
"defaultStatus": "affected",
"product": "Custom Metric Autoscaler 2.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4.4::el9"
],
"defaultStatus": "affected",
"product": "HawtIO HawtIO 4.4.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.0::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.4::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.4::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.4.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.5::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.5.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.6::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1.11::el9"
],
"defaultStatus": "affected",
"product": "Network Observability (NETOBSERV) 1.11.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.4::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.5::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_compliance_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift Compliance Operator 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.8::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Lightspeed (formerly Insights) for Runtimes 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:2.25::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 2.25",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.7::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.7.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.28::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces 3.28",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2.6::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3.9.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:stf:1.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.14::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.15::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.11::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:2.0::el8"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift 2.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.10::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.11::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.17::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.6::el8"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.8::el8"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:deployment_validator_operator"
],
"defaultStatus": "affected",
"product": "Deployment Validation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "affected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ext_dns_optr:1"
],
"defaultStatus": "affected",
"product": "ExternalDNS Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_far:0"
],
"defaultStatus": "affected",
"product": "Fence Agents Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1"
],
"defaultStatus": "affected",
"product": "File Integrity Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "affected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:5"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_mdr:0"
],
"defaultStatus": "affected",
"product": "Machine Deletion Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:1"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "affected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "affected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ai_inference_server:3"
],
"defaultStatus": "affected",
"product": "Red Hat AI Inference Server",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:connectivity_link:1"
],
"defaultStatus": "affected",
"product": "Red Hat Connectivity Link 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Workspaces Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_service_on_aws:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift on AWS",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_security_profiles_operator:1"
],
"defaultStatus": "affected",
"product": "Security Profiles Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "unaffected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_nhc:0"
],
"defaultStatus": "unaffected",
"product": "Node HealthCheck Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "unaffected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3"
],
"defaultStatus": "unaffected",
"product": "OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "unaffected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:hummingbird:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Hardened Images",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "unaffected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Service Interconnect 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_streams:3"
],
"defaultStatus": "unaffected",
"product": "streams for Apache Kafka 3",
"vendor": "Red Hat"
}
],
"datePublic": "2026-04-08T01:06:58.595Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-10T12:05:46.414Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"name": "RHBZ#2456339",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32280.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24762"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16101"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24761"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28886"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28961"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34097"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21655"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25180"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14391"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28047"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23244"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20569"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23103"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19715"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16024"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19550"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:18032"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:18027"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19719"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19750"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20570"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22713"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19714"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20571"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19450"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10217"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29195"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23102"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19133"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22141"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19144"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19135"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24470"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22130"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29035"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24716"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33722"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10704"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16875"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11507"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11514"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:15980"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19634"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34192"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34196"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34197"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19721"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20607"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20608"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19722"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16021"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20556"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19839"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28038"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19720"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22709"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17287"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24337"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20609"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14200"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10219"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29455"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29703"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19350"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19353"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26447"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22309"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29702"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28074"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25089"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22862"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22347"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21769"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23345"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16874"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25127"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13829"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20889"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13791"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13545"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21338"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13826"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22485"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24977"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24359"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21772"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11688"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16476"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16505"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16532"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16508"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16535"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16537"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16542"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16477"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16534"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14162"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14020"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22840"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21017"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19375"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22465"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23361"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24478"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22960"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22958"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22962"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22959"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22961"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28441"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22422"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22268"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22415"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28198"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28196"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22258"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22260"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:24762: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:16101: Red Hat Enterprise Linux Server (v. 7 ELS)"
},
{
"lang": "en",
"value": "RHSA-2026:24761: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:28886: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:28961: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:34097: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:21655: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:25180: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:14391: Cryostat 4 on RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:36796: RHEM 1.0 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:28047: Red Hat OpenStack Platform 17.1"
},
{
"lang": "en",
"value": "RHSA-2026:23244: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:34365: Red Hat Satellite 6.19 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:20569: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:23103: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19715: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:16024: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19550: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:18032: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:18027: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19750: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:20570: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:22713: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19714: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:20571: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:19450: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:10217: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:29195: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:23102: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19133: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22141: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19144: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:24470: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22130: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:29035: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:24716: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:33722: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:10704: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:16875: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:11507: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:11514: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:15980: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:34192: Red Hat Enterprise Linux AppStream E4S (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:34196: Red Hat Enterprise Linux AppStream E4S (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:34197: Red Hat Enterprise Linux AppStream E4S (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:20607: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:20608: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:19722: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:16021: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:20556: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:19839: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:28038: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:22709: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:17287: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:24337: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:20609: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:14200: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:10219: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29455: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29703: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19350: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:26447: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:22309: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:29702: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:28074: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:26636: Custom Metric Autoscaler 2.19"
},
{
"lang": "en",
"value": "RHSA-2026:25089: HawtIO HawtIO 4.4.0"
},
{
"lang": "en",
"value": "RHSA-2026:26585: Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"lang": "en",
"value": "RHSA-2026:22862: Logging Subsystem for Red Hat OpenShift 6.4"
},
{
"lang": "en",
"value": "RHSA-2026:22347: Multicluster Global Hub 1.4.5"
},
{
"lang": "en",
"value": "RHSA-2026:21769: Multicluster Global Hub 1.5.4"
},
{
"lang": "en",
"value": "RHSA-2026:23345: Multicluster Global Hub 1.6.2"
},
{
"lang": "en",
"value": "RHSA-2026:16874: Network Observability (NETOBSERV) 1.11.2"
},
{
"lang": "en",
"value": "RHSA-2026:29854: OpenShift API for Data Protection 1.4"
},
{
"lang": "en",
"value": "RHSA-2026:26568: OpenShift API for Data Protection 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:26571: OpenShift Compliance Operator 1"
},
{
"lang": "en",
"value": "RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14"
},
{
"lang": "en",
"value": "RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:36319: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:13545: Red Hat Ansible Automation Platform 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:21338: Red Hat Developer Hub 1.8"
},
{
"lang": "en",
"value": "RHSA-2026:13826: Red Hat Developer Hub 1.9"
},
{
"lang": "en",
"value": "RHSA-2026:36651: Red Hat Edge Manager 1.0"
},
{
"lang": "en",
"value": "RHSA-2026:22485: Red Hat Lightspeed (formerly Insights) for Runtimes 1"
},
{
"lang": "en",
"value": "RHSA-2026:24977: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:24359: Red Hat OpenShift Builds 1.7.4"
},
{
"lang": "en",
"value": "RHSA-2026:21772: Red Hat OpenShift Dev Spaces 3.28"
},
{
"lang": "en",
"value": "RHSA-2026:11688: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:16476: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:16505: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:16532: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:16508: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:16535: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:16537: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:16542: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:16477: Red Hat OpenShift Service Mesh 3"
},
{
"lang": "en",
"value": "RHSA-2026:16534: Red Hat OpenShift Service Mesh 3"
},
{
"lang": "en",
"value": "RHSA-2026:14162: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:14020: Red Hat OpenStack 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:22840: Red Hat Quay 3.10"
},
{
"lang": "en",
"value": "RHSA-2026:21017: Red Hat Quay 3.14"
},
{
"lang": "en",
"value": "RHSA-2026:24853: Red Hat Quay 3.15"
},
{
"lang": "en",
"value": "RHSA-2026:19375: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:22465: Red Hat Quay 3.17"
},
{
"lang": "en",
"value": "RHSA-2026:23361: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:24478: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:22960: Red Hat Web Terminal 1.11"
},
{
"lang": "en",
"value": "RHSA-2026:22958: Red Hat Web Terminal 1.12"
},
{
"lang": "en",
"value": "RHSA-2026:22962: Red Hat Web Terminal 1.13"
},
{
"lang": "en",
"value": "RHSA-2026:22959: Red Hat Web Terminal 1.14"
},
{
"lang": "en",
"value": "RHSA-2026:22961: Red Hat Web Terminal 1.15"
},
{
"lang": "en",
"value": "RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0"
},
{
"lang": "en",
"value": "RHSA-2026:22422: multicluster engine for Kubernetes 2.10"
},
{
"lang": "en",
"value": "RHSA-2026:22268: multicluster engine for Kubernetes 2.11"
},
{
"lang": "en",
"value": "RHSA-2026:22415: multicluster engine for Kubernetes 2.17"
},
{
"lang": "en",
"value": "RHSA-2026:28198: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:28196: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:22258: multicluster engine for Kubernetes 2.8"
},
{
"lang": "en",
"value": "RHSA-2026:22260: multicluster engine for Kubernetes 2.8"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-08T02:01:19.572Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-04-08T01:06:58.595Z",
"value": "Made public."
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "crypto/x509",
"product": "crypto/x509",
"programRoutines": [
{
"name": "Certificate.buildChains"
},
{
"name": "Certificate.Verify"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.25.9",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.26.2",
"status": "affected",
"version": "1.26.0-0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Jakub Ciolek - https://ciolek.dev"
}
],
"descriptions": [
{
"lang": "en",
"value": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-770: Allocation of Resources Without Limits or Throttling",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-08T01:06:58.595Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/758320"
},
{
"url": "https://go.dev/issue/78282"
},
{
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"title": "Unexpected work during chain building in crypto/x509"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2026-32280",
"datePublished": "2026-04-08T01:06:58.595Z",
"dateReserved": "2026-03-11T16:38:46.555Z",
"dateUpdated": "2026-07-10T12:05:46.414Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-32280",
"date": "2026-07-13",
"epss": "0.00615",
"percentile": "0.45316"
},
"microsoft_vex": {
"current_release_date": "2026-06-09T01:40:50.000Z",
"cve": "CVE-2026-32280",
"id": "msrc_CVE-2026-32280",
"initial_release_date": "2026-04-02T00:00:00.000Z",
"product_status:known_affected": "7",
"product_status:known_not_affected": "8",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "Unexpected work during chain building in crypto/x509",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-32280.json",
"version": "5"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-32280\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-04-08T02:16:03.247\",\"lastModified\":\"2026-07-10T12:16:38.577\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"crypto/x509\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"crypto/x509\",\"programRoutines\":[{\"name\":\"Certificate.buildChains\"},{\"name\":\"Certificate.Verify\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.25.9\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.26.0-0\",\"lessThan\":\"1.26.2\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux Server (v. 7 ELS)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_els:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.14::el8\",\"cpe:/a:redhat:openshift:4.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.15::el8\",\"cpe:/a:redhat:openshift:4.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.17::el8\",\"cpe:/a:redhat:openshift:4.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.18::el8\",\"cpe:/a:redhat:openshift:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el8\",\"cpe:/a:redhat:satellite_capsule:6.16::el8\",\"cpe:/a:redhat:satellite_maintenance:6.16::el8\",\"cpe:/a:redhat:satellite_utils:6.16::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4 on RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"RHEM 1.0 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\",\"cpe:/a:redhat:openstack:17.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.19::el8\",\"cpe:/a:redhat:openshift:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el9\",\"cpe:/a:redhat:satellite_capsule:6.16::el9\",\"cpe:/a:redhat:satellite_maintenance:6.16::el9\",\"cpe:/a:redhat:satellite_utils:6.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.19 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.19::el9\",\"cpe:/a:redhat:satellite_capsule:6.19::el9\",\"cpe:/a:redhat:satellite_maintenance:6.19::el9\",\"cpe:/a:redhat:satellite_utils:6.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.1\",\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler 2.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"HawtIO HawtIO 4.4.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.4.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.5.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability (NETOBSERV) 1.11.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Compliance Operator 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed (formerly Insights) for Runtimes 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 2.25\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:2.25::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.7.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.7::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces 3.28\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.28::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3.9.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:stf:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.14::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.15::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift 2.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:2.0::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.10::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.8::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Deployment Validation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:deployment_validator_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"ExternalDNS Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ext_dns_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Fence Agents Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_far:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"File Integrity Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Machine Deletion Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_mdr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AI Inference Server\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ai_inference_server:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Connectivity Link 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:connectivity_link:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Workspaces Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift on AWS\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_service_on_aws:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Security Profiles Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_security_profiles_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Node HealthCheck Operator\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_nhc:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Hardened Images\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:hummingbird:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"streams for Apache Kafka 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:amq_streams:3\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-04-08T17:46:14.569488Z\",\"id\":\"CVE-2026-32280\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.25.9\",\"matchCriteriaId\":\"C6C9C072-9817-402D-877F-F83584B07017\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.26.0\",\"versionEndExcluding\":\"1.26.2\",\"matchCriteriaId\":\"39FE9BAF-55E9-43AA-B14E-239E7EF1D65D\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/758320\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/78282\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4947\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10217\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10219\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10704\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11507\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11514\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11688\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13545\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13791\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13826\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13829\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14020\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14162\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14200\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14391\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:15980\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16021\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16024\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16101\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16476\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16477\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16505\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16508\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16532\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16534\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16535\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16537\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16542\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16874\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16875\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17084\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17287\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:18027\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:18032\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19133\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19135\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19144\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19350\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19353\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19375\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19450\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19550\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19634\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19714\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19715\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19719\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19720\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19721\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19722\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19750\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19839\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20556\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20569\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20570\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20571\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20607\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20608\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20609\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20889\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21017\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21338\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21655\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21769\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21772\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22130\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22141\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22258\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22260\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22268\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22309\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22347\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22415\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22422\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22465\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22485\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22709\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22713\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22840\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22862\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22958\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22959\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22960\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22961\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22962\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23102\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23103\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23244\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23345\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23361\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24337\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24359\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24470\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24478\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24716\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24761\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24762\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24977\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25089\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25127\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25180\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26447\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26568\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26571\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26585\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26636\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27076\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28038\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28047\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28074\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28196\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28198\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28441\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28886\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28961\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29035\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29195\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29455\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29702\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29703\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33722\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34097\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34192\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34196\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34197\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34365\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36319\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36651\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36796\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9385\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-32280\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2456339\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32280.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2026-07-13T23:04:10+00:00",
"cve": "CVE-2026-32280",
"id": "CVE-2026-32280",
"initial_release_date": "2026-04-08T01:06:58.595000+00:00",
"product_status:fixed": "2567",
"product_status:known_affected": "187",
"product_status:known_not_affected": "2664",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32280.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_els:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux Server (v. 7 ELS)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el8\", \"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el8\", \"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.16::el8\", \"cpe:/a:redhat:satellite_capsule:6.16::el8\", \"cpe:/a:redhat:satellite_maintenance:6.16::el8\", \"cpe:/a:redhat:satellite_utils:6.16::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.16 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4 on RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"RHEM 1.0 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\", \"cpe:/a:redhat:openstack:17.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.19::el8\", \"cpe:/a:redhat:openshift:4.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.16::el9\", \"cpe:/a:redhat:satellite_capsule:6.16::el9\", \"cpe:/a:redhat:satellite_maintenance:6.16::el9\", \"cpe:/a:redhat:satellite_utils:6.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.16 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.19::el9\", \"cpe:/a:redhat:satellite_capsule:6.19::el9\", \"cpe:/a:redhat:satellite_maintenance:6.19::el9\", \"cpe:/a:redhat:satellite_utils:6.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.19 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.1\", \"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat CodeReady Linux Builder EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Custom Metric Autoscaler 2.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"HawtIO HawtIO 4.4.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.4.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.5.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability (NETOBSERV) 1.11.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Compliance Operator 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Lightspeed (formerly Insights) for Runtimes 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai:2.25::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI 2.25\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_builds:1.7::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Builds 1.7.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3.28::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces 3.28\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.9.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:stf:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.14::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer 1.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:2.0::el8\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift 2.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.10::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Assisted Installer for Red Hat OpenShift Container Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"cert-manager Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:deployment_validator_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Deployment Validation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:external_secrets_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"External Secrets Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ext_dns_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"ExternalDNS Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_far:0\"], \"vendor\": \"Red Hat\", \"product\": \"Fence Agents Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"File Integrity Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:5\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lvms:4\"], \"vendor\": \"Red Hat\", \"product\": \"Logical Volume Manager Storage\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_mdr:0\"], \"vendor\": \"Red Hat\", \"product\": \"Machine Deletion Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:1\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:red_hat_3scale_amp:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat 3scale API Management Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ai_inference_server:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat AI Inference Server\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:connectivity_link:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Connectivity Link 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI (RHEL AI) 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Cluster Manager CLI\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devworkspace\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Workspaces Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_service_on_aws:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift on AWS\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_security_profiles_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"Security Profiles Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_nhc:0\"], \"vendor\": \"Red Hat\", \"product\": \"Node HealthCheck Operator\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 3\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_power_monitoring\"], \"vendor\": \"Red Hat\", \"product\": \"Power monitoring for Red Hat OpenShift\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:windows_machine_config\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift for Windows Containers\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_streams:3\"], \"vendor\": \"Red Hat\", \"product\": \"streams for Apache Kafka 3\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-04-08T02:01:19.572Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-04-08T01:06:58.595Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:24762: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16101: Red Hat Enterprise Linux Server (v. 7 ELS)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24761: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28886: Red Hat OpenShift Container Platform 4.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28961: Red Hat OpenShift Container Platform 4.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34097: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21655: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25180: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14391: Cryostat 4 on RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36796: RHEM 1.0 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28047: Red Hat OpenStack Platform 17.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23244: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34365: Red Hat Satellite 6.19 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20569: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23103: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19715: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16024: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19550: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:18032: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:18027: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19750: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20570: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22713: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19714: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20571: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19450: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10217: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29195: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23102: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19133: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22141: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19144: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24470: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22130: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29035: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24716: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33722: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10704: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16875: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11507: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11514: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:15980: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34192: Red Hat Enterprise Linux AppStream E4S (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34196: Red Hat Enterprise Linux AppStream E4S (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34197: Red Hat Enterprise Linux AppStream E4S (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20607: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20608: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19722: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16021: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20556: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19839: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28038: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22709: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17287: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24337: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20609: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14200: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10219: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29455: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29703: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19350: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26447: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22309: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29702: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28074: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26636: Custom Metric Autoscaler 2.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25089: HawtIO HawtIO 4.4.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26585: Logging Subsystem for Red Hat OpenShift 6.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22862: Logging Subsystem for Red Hat OpenShift 6.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22347: Multicluster Global Hub 1.4.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21769: Multicluster Global Hub 1.5.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23345: Multicluster Global Hub 1.6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16874: Network Observability (NETOBSERV) 1.11.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29854: OpenShift API for Data Protection 1.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26568: OpenShift API for Data Protection 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26571: OpenShift Compliance Operator 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36319: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13545: Red Hat Ansible Automation Platform 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21338: Red Hat Developer Hub 1.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13826: Red Hat Developer Hub 1.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36651: Red Hat Edge Manager 1.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22485: Red Hat Lightspeed (formerly Insights) for Runtimes 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24977: Red Hat OpenShift AI 2.25\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24359: Red Hat OpenShift Builds 1.7.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21772: Red Hat OpenShift Dev Spaces 3.28\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11688: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16476: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16477: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16534: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16505: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16532: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16508: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16535: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16537: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16542: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14162: Red Hat OpenShift distributed tracing 3.9.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14020: Red Hat OpenStack 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22840: Red Hat Quay 3.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21017: Red Hat Quay 3.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24853: Red Hat Quay 3.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19375: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22465: Red Hat Quay 3.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23361: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24478: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22960: Red Hat Web Terminal 1.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22958: Red Hat Web Terminal 1.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22962: Red Hat Web Terminal 1.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22959: Red Hat Web Terminal 1.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22961: Red Hat Web Terminal 1.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22422: multicluster engine for Kubernetes 2.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22268: multicluster engine for Kubernetes 2.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22415: multicluster engine for Kubernetes 2.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28198: multicluster engine for Kubernetes 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28196: multicluster engine for Kubernetes 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22258: multicluster engine for Kubernetes 2.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22260: multicluster engine for Kubernetes 2.8\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-04-08T01:06:58.595Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-32280\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2456339\", \"name\": \"RHBZ#2456339\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32280.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24762\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16101\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24761\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28886\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28961\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21655\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25180\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:27076\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14391\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36796\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28047\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23244\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34365\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20569\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23103\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19715\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16024\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19550\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:18032\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:18027\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17084\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19719\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19750\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20570\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22713\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19714\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20571\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19450\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10217\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29195\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23102\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19133\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22141\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19144\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24470\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22130\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29035\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24716\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33722\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10704\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16875\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11507\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11514\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:15980\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19634\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34192\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34196\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34197\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19721\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20607\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20608\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19722\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16021\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20556\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19839\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28038\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19720\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22709\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17287\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24337\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20609\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14200\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10219\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29455\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29703\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19350\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19353\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26447\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22309\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29702\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28074\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26636\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25089\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26585\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22862\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22347\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21769\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23345\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16874\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29854\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26568\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26571\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25127\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13829\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20889\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13791\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36319\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13545\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21338\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13826\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36651\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22485\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24977\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24359\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21772\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11688\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16476\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16477\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16534\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16505\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16532\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16508\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16535\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16537\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16542\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14162\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9385\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14020\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22840\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21017\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24853\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19375\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22465\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23361\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24478\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22960\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22958\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22962\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22959\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22961\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28441\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22422\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22268\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22415\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28198\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28196\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22258\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22260\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-09T12:09:15.670Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-32280\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-08T17:46:14.569488Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770 Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-08T17:45:30.925Z\"}}], \"cna\": {\"title\": \"Unexpected work during chain building in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Jakub Ciolek - https://ciolek.dev\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.25.9\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.26.0-0\", \"lessThan\": \"1.26.2\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Certificate.buildChains\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/758320\"}, {\"url\": \"https://go.dev/issue/78282\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4947\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-770: Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-04-08T01:06:58.595Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-32280\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-09T12:09:15.670Z\", \"dateReserved\": \"2026-03-11T16:38:46.555Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-04-08T01:06:58.595Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:34365
Vulnerability from csaf_redhat - Published: 2026-07-01 17:32 - Updated: 2026-07-14 05:26A flaw was found in Foreman. This broken access control vulnerability allows an authenticated user with host-edit permissions to retarget an existing lookup value override to a different host. This is achieved by modifying the match field through nested host attributes, effectively bypassing authorisation checks. The consequence is the potential for unauthorised modification of managed host configurations across different organisational and location boundaries.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments against the calling user's permissions. This allows an authenticated user with usergroup management permissions to attach arbitrary roles, including administrative roles, to a user group and then add themselves as a member. Successful exploitation of this vulnerability leads to full privilege escalation, granting the attacker administrator-level access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
A flaw was found in Foreman. An authenticated user with host-edit permissions could exploit a cross-tenant information disclosure vulnerability. This flaw occurs because the taxonomy_scope controller method does not properly validate organization and location IDs from nested request parameters, bypassing existing authorization checks. This allows the user to leak sensitive infrastructure metadata, including subnet topology, IP ranges, gateways, DNS servers, and VLAN IDs, from organizations and locations they are not authorized to access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
A flaw was found in foreman. Authenticated users with 'view_keypairs' permission can bypass taxonomy scoping, allowing them to download private SSH (Secure Shell) keys from other organizations by directly querying key pair IDs. This vulnerability leads to cross-tenant data exposure in multi-tenant deployments, potentially compromising sensitive information.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
A flaw was found in mchange-commons-java, a Java utility library. An attacker can exploit this vulnerability by providing a maliciously crafted `javax.naming.Reference` or serialized object to an application using the library. This can provoke the application to download and execute arbitrary malicious code due to mchange-commons-java's independent implementation of Java Naming and Directory Interface (JNDI) dereferencing, which supports remote code loading. This could lead to arbitrary code execution within the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library's failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Workaround
|
A flaw was found in PyJWT, a Python library for JSON Web Token (JWT) implementation. When decoding JWTs, the library fails to validate the use of JSON Web Keys (JWK) in the HMAC algorithm while also supporting asymmetric algorithms. This allows a remote attacker to use the issuer's public key as the secret key for the HMAC algorithm, leading to the ability to forge JWTs. This vulnerability can result in authentication bypass or unauthorized access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new release is now available for Red Hat Satellite 6.19 for RHEL 9.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations\nto configure and maintain their systems without the necessity to provide\npublic Internet access to their servers or other client systems. It\nperforms provisioning and configuration management of predefined standard\noperating environments.\n\nSecurity Fix(es):\n\n* candlepin: mchange-commons-java: Arbitrary code execution via JNDI dereferencing of crafted objects (CVE-2026-27727)\n* yggdrasil-worker-forwarder: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n* yggdrasil-worker-forwarder: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n* yggdrasil-worker-forwarder: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n* yggdrasil-worker-forwarder: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n* yggdrasil-worker-forwarder: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n* yggdrasil-worker-forwarder: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n* python-pillow: Pillow: Denial of Service via decompression bomb in FITS image processing (CVE-2026-40192)\n* python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens (CVE-2026-48526)\n* foreman: foreman: Cross-tenant private SSH key disclosure via taxonomy scoping bypass (CVE-2026-5142)\n* foreman: Foreman: Information disclosure via improper validation of nested request parameters (CVE-2026-5138)\n* foreman: Foreman: Privilege escalation to administrator-level access via usergroup role assignment manipulation (CVE-2026-5136)\n* foreman: Foreman: Unauthorized modification of host configurations via broken access control (CVE-2026-5135)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:34365",
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "SAT-45957",
"url": "https://issues.redhat.com/browse/SAT-45957"
},
{
"category": "external",
"summary": "SAT-46096",
"url": "https://issues.redhat.com/browse/SAT-46096"
},
{
"category": "external",
"summary": "SAT-46097",
"url": "https://issues.redhat.com/browse/SAT-46097"
},
{
"category": "external",
"summary": "SAT-46098",
"url": "https://issues.redhat.com/browse/SAT-46098"
},
{
"category": "external",
"summary": "SAT-46101",
"url": "https://issues.redhat.com/browse/SAT-46101"
},
{
"category": "external",
"summary": "SAT-46102",
"url": "https://issues.redhat.com/browse/SAT-46102"
},
{
"category": "external",
"summary": "SAT-46103",
"url": "https://issues.redhat.com/browse/SAT-46103"
},
{
"category": "external",
"summary": "SAT-46106",
"url": "https://issues.redhat.com/browse/SAT-46106"
},
{
"category": "external",
"summary": "SAT-46107",
"url": "https://issues.redhat.com/browse/SAT-46107"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_34365.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.19.2 Async Update",
"tracking": {
"current_release_date": "2026-07-14T05:26:10+00:00",
"generator": {
"date": "2026-07-14T05:26:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:34365",
"initial_release_date": "2026-07-01T17:32:19+00:00",
"revision_history": [
{
"date": "2026-07-01T17:32:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T19:41:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:26:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.19::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.19::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.19::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-maintenance",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_maintenance:6.19::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-0:3.18.0.7-1.el9sat.src",
"product": {
"name": "foreman-0:3.18.0.7-1.el9sat.src",
"product_id": "foreman-0:3.18.0.7-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.18.0.7-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "candlepin-0:4.7.5-1.el9sat.src",
"product": {
"name": "candlepin-0:4.7.5-1.el9sat.src",
"product_id": "candlepin-0:4.7.5-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/candlepin@4.7.5-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.12-pillow-0:12.2.0-1.el9pc.src",
"product": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.src",
"product_id": "python3.12-pillow-0:12.2.0-1.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pillow@12.2.0-1.el9pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"product": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"product_id": "python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pulp-container@2.26.16-1.el9pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"product": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"product_id": "python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pyjwt@2.13.0-1.el9pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"product": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"product_id": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.14.5-1.el9sat?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.src",
"product": {
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.src",
"product_id": "rubygem-katello-0:4.20.0.5-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.20.0.5-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.19.2-1.el9sat.src",
"product": {
"name": "satellite-0:6.19.2-1.el9sat.src",
"product_id": "satellite-0:6.19.2-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.19.2-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el9sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-debug@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-pcp@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-cli@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ec2@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-journald@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-libvirt@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-openstack@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-postgresql@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-redis@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-service-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-service-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-service-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-service@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-telemetry@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"product": {
"name": "foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"product_id": "foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-vmware@3.18.0.7-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "candlepin-0:4.7.5-1.el9sat.noarch",
"product": {
"name": "candlepin-0:4.7.5-1.el9sat.noarch",
"product_id": "candlepin-0:4.7.5-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/candlepin@4.7.5-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"product": {
"name": "candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"product_id": "candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/candlepin-selinux@4.7.5-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"product": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"product_id": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pulp-container@2.26.16-1.el9pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"product": {
"name": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"product_id": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pyjwt%2Bcrypto@2.13.0-1.el9pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"product": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"product_id": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pyjwt@2.13.0-1.el9pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"product": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"product_id": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.14.5-1.el9sat?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"product": {
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"product_id": "rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.20.0.5-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.19.2-1.el9sat.noarch",
"product": {
"name": "satellite-capsule-0:6.19.2-1.el9sat.noarch",
"product_id": "satellite-capsule-0:6.19.2-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.19.2-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.19.2-1.el9sat.noarch",
"product": {
"name": "satellite-common-0:6.19.2-1.el9sat.noarch",
"product_id": "satellite-common-0:6.19.2-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.19.2-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"product": {
"name": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"product_id": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-obsolete-packages@6.19.2-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.19.2-1.el9sat.noarch",
"product": {
"name": "satellite-0:6.19.2-1.el9sat.noarch",
"product_id": "satellite-0:6.19.2-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.19.2-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.19.2-1.el9sat.noarch",
"product": {
"name": "satellite-cli-0:6.19.2-1.el9sat.noarch",
"product_id": "satellite-cli-0:6.19.2-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.19.2-1.el9sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"product_id": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pillow@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product_id": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pillow-debugsource@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product_id": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.12-pillow-debuginfo@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el9sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.18.0.7-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src"
},
"product_reference": "foreman-0:3.18.0.7-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src"
},
"product_reference": "python3.12-pillow-0:12.2.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch"
},
"product_reference": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src"
},
"product_reference": "python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch"
},
"product_reference": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch"
},
"product_reference": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src"
},
"product_reference": "python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.19.2-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src"
},
"product_reference": "satellite-0:6.19.2-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-capsule-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-common-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.18.0.7-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src"
},
"product_reference": "foreman-0:3.18.0.7-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.19.2-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src"
},
"product_reference": "satellite-0:6.19.2-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-cli-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "candlepin-0:4.7.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch"
},
"product_reference": "candlepin-0:4.7.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "candlepin-0:4.7.5-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src"
},
"product_reference": "candlepin-0:4.7.5-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "candlepin-selinux-0:4.7.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch"
},
"product_reference": "candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.18.0.7-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src"
},
"product_reference": "foreman-0:3.18.0.7-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-service-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.18.0.7-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
},
"product_reference": "foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src"
},
"product_reference": "python3.12-pillow-0:12.2.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch"
},
"product_reference": "python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pulp-container-0:2.26.16-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src"
},
"product_reference": "python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch"
},
"product_reference": "python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch"
},
"product_reference": "python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.12-pyjwt-0:2.13.0-1.el9pc.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src"
},
"product_reference": "python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch"
},
"product_reference": "rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.20.0.5-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src"
},
"product_reference": "rubygem-katello-0:4.20.0.5-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.19.2-1.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src"
},
"product_reference": "satellite-0:6.19.2-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-cli-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-common-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
},
"product_reference": "satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 as a component of Red Hat Satellite 6.19 for RHEL 9",
"product_id": "9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"relates_to_product_reference": "9Base-satellite-6.19"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Stanislav Fot"
],
"organization": "Aisle Research"
}
],
"cve": "CVE-2026-5135",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2026-03-27T13:22:30.704000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452230"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Foreman. This broken access control vulnerability allows an authenticated user with host-edit permissions to retarget an existing lookup value override to a different host. This is achieved by modifying the match field through nested host attributes, effectively bypassing authorisation checks. The consequence is the potential for unauthorised modification of managed host configurations across different organisational and location boundaries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: Foreman: Unauthorized modification of host configurations via broken access control",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5135"
},
{
"category": "external",
"summary": "RHBZ#2452230",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452230"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5135"
}
],
"release_date": "2026-04-15T12:34:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "foreman: Foreman: Unauthorized modification of host configurations via broken access control"
},
{
"acknowledgments": [
{
"names": [
"Stanislav Fot"
],
"organization": "Aisle Research"
}
],
"cve": "CVE-2026-5136",
"cwe": {
"id": "CWE-266",
"name": "Incorrect Privilege Assignment"
},
"discovery_date": "2026-03-30T10:41:48.559000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452970"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments against the calling user\u0027s permissions. This allows an authenticated user with usergroup management permissions to attach arbitrary roles, including administrative roles, to a user group and then add themselves as a member. Successful exploitation of this vulnerability leads to full privilege escalation, granting the attacker administrator-level access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: Foreman: Privilege escalation to administrator-level access via usergroup role assignment manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5136"
},
{
"category": "external",
"summary": "RHBZ#2452970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5136",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5136"
}
],
"release_date": "2026-07-01T12:28:21.744000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "foreman: Foreman: Privilege escalation to administrator-level access via usergroup role assignment manipulation"
},
{
"acknowledgments": [
{
"names": [
"Stanislav Fot"
],
"organization": "Aisle Research"
}
],
"cve": "CVE-2026-5138",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2026-03-30T10:51:04.461000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452971"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Foreman. An authenticated user with host-edit permissions could exploit a cross-tenant information disclosure vulnerability. This flaw occurs because the taxonomy_scope controller method does not properly validate organization and location IDs from nested request parameters, bypassing existing authorization checks. This allows the user to leak sensitive infrastructure metadata, including subnet topology, IP ranges, gateways, DNS servers, and VLAN IDs, from organizations and locations they are not authorized to access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: Foreman: Information disclosure via improper validation of nested request parameters",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5138"
},
{
"category": "external",
"summary": "RHBZ#2452971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452971"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5138",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5138"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5138",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5138"
}
],
"release_date": "2026-07-01T12:29:33.423000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "foreman: Foreman: Information disclosure via improper validation of nested request parameters"
},
{
"acknowledgments": [
{
"names": [
"Stanislav Fot"
],
"organization": "Aisle Research"
}
],
"cve": "CVE-2026-5142",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2026-03-30T12:04:45.283000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452999"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in foreman. Authenticated users with \u0027view_keypairs\u0027 permission can bypass taxonomy scoping, allowing them to download private SSH (Secure Shell) keys from other organizations by directly querying key pair IDs. This vulnerability leads to cross-tenant data exposure in multi-tenant deployments, potentially compromising sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "foreman: foreman: Cross-tenant private SSH key disclosure via taxonomy scoping bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5142"
},
{
"category": "external",
"summary": "RHBZ#2452999",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452999"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5142",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5142"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5142",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5142"
}
],
"release_date": "2026-04-30T12:34:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "foreman: foreman: Cross-tenant private SSH key disclosure via taxonomy scoping bypass"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27727",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2026-02-25T17:04:31.254239+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442671"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in mchange-commons-java, a Java utility library. An attacker can exploit this vulnerability by providing a maliciously crafted `javax.naming.Reference` or serialized object to an application using the library. This can provoke the application to download and execute arbitrary malicious code due to mchange-commons-java\u0027s independent implementation of Java Naming and Directory Interface (JNDI) dereferencing, which supports remote code loading. This could lead to arbitrary code execution within the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "com.mchange/mchange-commons-java: mchange-commons-java: Arbitrary code execution via JNDI dereferencing of crafted objects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27727"
},
{
"category": "external",
"summary": "RHBZ#2442671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27727",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27727"
},
{
"category": "external",
"summary": "https://github.com/swaldman/mchange-commons-java/security/advisories/GHSA-m2cm-222f-qw44",
"url": "https://github.com/swaldman/mchange-commons-java/security/advisories/GHSA-m2cm-222f-qw44"
},
{
"category": "external",
"summary": "https://mogwailabs.de/en/blog/2025/02/c3p0-you-little-rascal",
"url": "https://mogwailabs.de/en/blog/2025/02/c3p0-you-little-rascal"
},
{
"category": "external",
"summary": "https://www.mchange.com/projects/c3p0/#configuring_security",
"url": "https://www.mchange.com/projects/c3p0/#configuring_security"
},
{
"category": "external",
"summary": "https://www.mchange.com/projects/c3p0/#security-note",
"url": "https://www.mchange.com/projects/c3p0/#security-note"
}
],
"release_date": "2026-02-25T16:01:04.187000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "com.mchange/mchange-commons-java: mchange-commons-java: Arbitrary code execution via JNDI dereferencing of crafted objects"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-40192",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-04-16T00:00:49.590876+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2458856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library\u0027s failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-40192"
},
{
"category": "external",
"summary": "RHBZ#2458856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-40192",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628",
"url": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/pull/9521",
"url": "https://github.com/python-pillow/Pillow/pull/9521"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j",
"url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j"
},
{
"category": "external",
"summary": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb",
"url": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb"
}
],
"release_date": "2026-04-15T22:53:56.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing"
},
{
"cve": "CVE-2026-48526",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-05-28T16:01:22.805235+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2482734"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in PyJWT, a Python library for JSON Web Token (JWT) implementation. When decoding JWTs, the library fails to validate the use of JSON Web Keys (JWK) in the HMAC algorithm while also supporting asymmetric algorithms. This allows a remote attacker to use the issuer\u0027s public key as the secret key for the HMAC algorithm, leading to the ability to forge JWTs. This vulnerability can result in authentication bypass or unauthorized access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in PyJWT allows for authentication bypass and unauthorized access. It occurs when a JWT verifier is misconfigured to accept both symmetric and asymmetric algorithms, and a public JSON Web Key is erroneously used as the HMAC secret. Red Hat products are only affected if they utilize this specific, non-standard verifier configuration.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src"
],
"known_not_affected": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48526"
},
{
"category": "external",
"summary": "RHBZ#2482734",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2482734"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48526",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48526"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48526",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48526"
},
{
"category": "external",
"summary": "https://github.com/jpadilla/pyjwt/security/advisories/GHSA-xgmm-8j9v-c9wx",
"url": "https://github.com/jpadilla/pyjwt/security/advisories/GHSA-xgmm-8j9v-c9wx"
}
],
"release_date": "2026-05-28T15:09:09.258000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-01T17:32:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.19/html/updating_red_hat_satellite/index",
"product_ids": [
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:34365"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-satellite-6.19-capsule:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-capsule:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19-capsule:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19-capsule:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-capsule:satellite-capsule-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-capsule:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19-maintenance:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19-utils:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19-utils:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19-utils:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:candlepin-0:4.7.5-1.el9sat.src",
"9Base-satellite-6.19:candlepin-selinux-0:4.7.5-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-0:3.18.0.7-1.el9sat.src",
"9Base-satellite-6.19:foreman-cli-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-debug-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-dynflow-sidekiq-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-ec2-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-journald-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-libvirt-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-openstack-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-pcp-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-postgresql-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-redis-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-service-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-telemetry-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:foreman-vmware-0:3.18.0.7-1.el9sat.noarch",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pulp-container-0:2.26.16-1.el9pc.src",
"9Base-satellite-6.19:python3.12-pyjwt+crypto-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.noarch",
"9Base-satellite-6.19:python3.12-pyjwt-0:2.13.0-1.el9pc.src",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-foreman_maintain-1:1.14.5-1.el9sat.src",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.noarch",
"9Base-satellite-6.19:rubygem-katello-0:4.20.0.5-1.el9sat.src",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-0:6.19.2-1.el9sat.src",
"9Base-satellite-6.19:satellite-cli-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-common-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:satellite-obsolete-packages-0:6.19.2-1.el9sat.noarch",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.19:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens"
}
]
}
RHSA-2026:36319
Vulnerability from csaf_redhat - Published: 2026-07-07 15:06 - Updated: 2026-07-14 10:11A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36319",
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12143",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25681",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39831",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46597",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9165",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-499_release-notes-49",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-499_release-notes-49"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36319.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.9.9 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-14T10:11:54+00:00",
"generator": {
"date": "2026-07-14T10:11:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36319",
"initial_release_date": "2026-07-07T15:06:01+00:00",
"revision_history": [
{
"date": "2026-07-07T15:06:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T15:06:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T10:11:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Ace31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ac11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Ad58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ad055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3Ac8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Aaa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Ad68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Aa2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ab48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Aa757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Afbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Aef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Aac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aedd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Aac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Abff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Moritz Clasmeier"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-9165",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2026-05-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue affecting RHACS Central. This flaw allows an authenticated user to reduce availability of the Central management component. Red Hat is not aware of malicious exploitation of this issue outside of coordinated testing. Updates addressing this issue will be released according to the RHACS support lifecycle. Refer to the associated errata when available for affected versions and update instructions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "RHBZ#2480505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165"
}
],
"release_date": "2026-07-06T08:38:30.568000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "There is no complete mitigation other than installing the update once\navailable.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service"
},
{
"cve": "CVE-2026-12143",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-06-12T19:00:57.360953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488480"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (\") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "form-data: form-data: Form field override via CRLF injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw in the form-data library: a remote attacker can inject arbitrary headers or additional multipart parts via CRLF injection in field names or filenames, potentially overriding sensitive form fields and affecting data integrity.\n\nFor RHOAI and RHEL AI, severity is Moderate because affected versions appear only as a transitive npm dependency in RHOAI (dashboard, mod-arch plugins, MLflow UI) and RHEL AI 3.4 bootc images, and those products use fixed field names for uploads rather than passing untrusted user input as multipart field names or filenames. The documented exploit path is therefore not reachable in default deployments. Practical impact is limited to non-default or custom integrations that forward multipart requests using attacker-controlled field names.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "RHBZ#2488480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488480"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://cwe.mitre.org/data/definitions/93.html",
"url": "https://cwe.mitre.org/data/definitions/93.html"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435",
"url": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229",
"url": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045",
"url": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx",
"url": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx"
},
{
"category": "external",
"summary": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data",
"url": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/form-data",
"url": "https://www.npmjs.com/package/form-data"
}
],
"release_date": "2026-06-12T18:01:30.362000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Applications using the `form-data` library should implement strict input validation and sanitization for all field names and filenames derived from untrusted sources. This prevents the injection of control characters (CR, LF, \") that could lead to header injection or form field overrides. Deployments that exclusively use fixed or trusted field names are not impacted.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "form-data: form-data: Form field override via CRLF injection"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-25681",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:01:08.177603+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480761"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/net/html` could enable remote attackers to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution. The flaw allows specially crafted HTML to bypass input sanitization during parsing and rendering. Red Hat products are affected if they process untrusted HTML content using the vulnerable component without additional output encoding or robust content security policies.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "RHBZ#2480761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25681",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://go.dev/cl/781703",
"url": "https://go.dev/cl/781703"
},
{
"category": "external",
"summary": "https://go.dev/issue/79574",
"url": "https://go.dev/issue/79574"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5029",
"url": "https://pkg.go.dev/vuln/GO-2026-5029"
}
],
"release_date": "2026-05-22T15:01:21.975000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this flaw, applications processing untrusted HTML input must implement strict input sanitization and ensure all output is properly encoded before rendering. Deploying a comprehensive Content Security Policy (CSP) can restrict script execution, further reducing the attack surface. Administrators should review application configurations to ensure adequate protection against XSS.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39831",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-05-22T04:01:12.861178+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480675"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "RHBZ#2480675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480675"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39831",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://go.dev/cl/781662",
"url": "https://go.dev/cl/781662"
},
{
"category": "external",
"summary": "https://go.dev/issue/79566",
"url": "https://go.dev/issue/79566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5019",
"url": "https://pkg.go.dev/vuln/GO-2026-5019"
}
],
"release_date": "2026-05-22T02:31:27.436000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-46597",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"discovery_date": "2026-05-22T04:01:21.721980+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480678"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in `golang.org/x/crypto/ssh` allows a remote attacker to trigger a server-side panic by sending specially crafted inputs to the AES-GCM packet decoder. This vulnerability could lead to service unavailability in Red Hat products that incorporate and expose SSH services built with the affected `golang.org/x/crypto/ssh` component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "RHBZ#2480678",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480678"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46597",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46597"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://go.dev/cl/781620",
"url": "https://go.dev/cl/781620"
},
{
"category": "external",
"summary": "https://go.dev/issue/79561",
"url": "https://go.dev/issue/79561"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5013",
"url": "https://pkg.go.dev/vuln/GO-2026-5013"
}
],
"release_date": "2026-05-22T02:31:26.754000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36651
Vulnerability from csaf_redhat - Published: 2026-07-08 10:08 - Updated: 2026-07-14 10:38A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — | ||
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Edge Manager Version 1.0.3 Security Update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused\nmanagement of edge devices and applications. It supports image-mode RHEL and\ncontainer workloads that run on Podman/Docker or Kubernetes.\n\nRHEM is now available as a standalone feature, providing greater flexibility for\nedge deployments. In addition to the standalone version, RHEM continues to be\noffered as a plugin for the following platforms:\n\n* Red Hat Advanced Cluster Management (RHACM): Extends fleet management to edge\ndevices.\n* Red Hat Ansible Automation Platform (AAP): Integrates edge management with\nAnsible automation.\n\nThis integration enables organizations to optimize the management and\norchestration of their fleets of edge devices; whether its thousands of\ndispersed retail point-of-sale systems or industrial machinery on remote factory\nfloors.\n\nValue for customers and partners:\n\n* This solution not only helps customers manage thousands of devices but helps\nscale operations.\n* To manage large-scale deployments, customers need to be able to integrate with\ntheir existing management systems, support remote configuration and over-the-air\nupdates, and collect telemetry data for advanced analytics.\n* Red Hat Edge Manager offers a simple and security-focused lifecycle\nmanagement, from onboarding to decommissioning of edge devices.\n\nThis complete end-to-end solution empowers organizations to gain the most value\nfrom the fleets of devices that generate data, all from a centralized location.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36651",
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13465",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-69873",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-22029",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29063",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32141",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42154",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4926",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36651.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Edge Manager Version 1.0.3 Security Update",
"tracking": {
"current_release_date": "2026-07-14T10:38:48+00:00",
"generator": {
"date": "2026-07-14T10:38:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36651",
"initial_release_date": "2026-07-08T10:08:44+00:00",
"revision_history": [
{
"date": "2026-07-08T10:08:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T10:08:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T10:38:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Edge Manager 1.0",
"product": {
"name": "Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:edge_manager:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Edge Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3A7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3A9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3A5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3A3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3Ab0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3A51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Af1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3A5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3Aceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79?arch=amd64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alert-exporter-rhel9@sha256%3Abb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alert-exporter-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-alertmanager-proxy-rhel9@sha256%3Ae4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9\u0026tag=1783502465"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-api-rhel9@sha256%3Afb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-api-rhel9\u0026tag=1783502025"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-cli-artifacts-rhel9@sha256%3Ac9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9\u0026tag=1783502494"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-db-setup-rhel9@sha256%3A84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-db-setup-rhel9\u0026tag=1783502401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-pam-issuer-rhel9@sha256%3A225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-pam-issuer-rhel9\u0026tag=1783502403"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-periodic-rhel9@sha256%3A0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-periodic-rhel9\u0026tag=1783502022"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-telemetry-gateway-rhel9@sha256%3Aaba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9\u0026tag=1783502023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-rhel9@sha256%3Ae75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-rhel9\u0026tag=1783502438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-ui-ocp-rhel9@sha256%3Ae8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-ui-ocp-rhel9\u0026tag=1783502765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-userinfo-proxy-rhel9@sha256%3A636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9\u0026tag=1783502029"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_id": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"product_identification_helper": {
"purl": "pkg:oci/flightctl-worker-rhel9@sha256%3A4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395?arch=arm64\u0026repository_url=registry.redhat.io/rhem/flightctl-worker-rhel9\u0026tag=1783502445"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64 as a component of Red Hat Edge Manager 1.0",
"product_id": "Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
},
"product_reference": "registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64",
"relates_to_product_reference": "Red Hat Edge Manager 1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2026-01-21T20:01:28.774829+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: prototype pollution in _.unset and _.omit functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable by applications using the _.unset and _.omit functions on an object and allowing user input to determine the path of the property to be removed. This issue only allows the deletion of properties but does not allow overwriting their behavior, limiting the impact to a denial of service. Due to this reason, this vulnerability has been rated with an important severity.\n\nIn Grafana, JavaScript code runs only in the browser, while the server side is all Golang. Therefore, the worst-case scenario is a loss of functionality in the client application inside the browser. To reflect this, the CVSS availability metric and the severity of the Grafana and the Grafana-PCP component have been updated to low and moderate, respectively.\n\nThe lodash dependency is bundled and used by the pcs-web-ui component of the PCS package. In Red Hat Enterprise Linux 8.10, the pcs-web-ui component is no longer included in the PCS package. As a result, RHEL 8.10 does not ship the vulnerable lodash component within PCS and is therefore not-affected by this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "RHBZ#2431740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg",
"url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
}
],
"release_date": "2026-01-21T19:05:28.846000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement strict input validation before passing any property paths to the _.unset and _.omit functions to block attempts to access the prototype chain. Ensure that strings like __proto__, constructor and prototype are blocked, for example.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: prototype pollution in _.unset and _.omit functions"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2025-69873",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-11T19:01:32.953264+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439070"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ajv: ReDoS via $data reference",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, the $data option must be enabled and the attacker needs to be able to send a payload with a specially crafted regular expression to the application processing the input. A 31-character payload causes approximately 44 seconds of execution, with each additional character doubling the execution time. Therefore, even a small payload can cause an application to become unresponsive and eventually result in a denial of service. Due to this reason, this flaw has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "RHBZ#2439070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69873"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md",
"url": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md"
}
],
"release_date": "2026-02-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, disable the $data feature if your application does not require it. If $data must be used, implement strict validation of the input fields that are referenced by the pattern keyword to ensure they contain only expected and safe characters.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ajv: ReDoS via $data reference"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-4926",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-03-26T20:03:28.427630+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451867"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in `path-to-regexp` that can lead to a Denial of Service. The vulnerability occurs when specially crafted input containing multiple sequential optional groups is used to generate regular expressions, causing exponential resource consumption.\n\nThe Red Hat Advanced Cluster Security is not affected by this issue since it\u0027s shipping a `path-to-regexp` version which doesn\u0027t contain the vulnerable code.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "RHBZ#2451867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451867"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4926",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
}
],
"release_date": "2026-03-26T18:59:38+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, limit the use of multiple sequential optional groups in route patterns within applications that use `path-to-regexp`. Additionally, avoid directly passing user-controlled input as route patterns to prevent the generation of maliciously crafted regular expressions.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions"
},
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-22029",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-01-10T04:01:03.694749+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2428412"
}
],
"notes": [
{
"category": "description",
"text": "A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "RHBZ#2428412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2428412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-22029",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22029"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx",
"url": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx"
}
],
"release_date": "2026-01-10T02:42:32.736000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-29063",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-03-06T19:00:57.982727+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445291"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this vulnerability requires that an attacker is able to provide arbitrary data to clients of this library in a way that calls the affected functions with data the attacker controls. In most deployments, the ability to provide data in this fashion requires that an attacker has some degree of privileges to access the affected applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29063"
},
{
"category": "external",
"summary": "RHBZ#2445291",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445291"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5",
"url": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5"
},
{
"category": "external",
"summary": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw",
"url": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw"
}
],
"release_date": "2026-03-06T18:25:22.438000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution"
},
{
"cve": "CVE-2026-32141",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-03-12T19:01:30.987208+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2447083"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the flatted npm library. flatted\u0027s parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "flatted: flatted: Unbounded recursion DoS in parse() revive phase",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32141"
},
{
"category": "external",
"summary": "RHBZ#2447083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606",
"url": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/pull/88",
"url": "https://github.com/WebReflection/flatted/pull/88"
},
{
"category": "external",
"summary": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f",
"url": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f"
}
],
"release_date": "2026-03-12T18:08:09.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "flatted: flatted: Unbounded recursion DoS in parse() revive phase"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42154",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-04T19:02:19.626646+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Prometheus, allowing an unauthenticated remote attacker to crash the Prometheus process. This could lead to service unavailability in Red Hat products that deploy Prometheus for monitoring, as the remote read endpoint does not properly validate snappy-compressed request lengths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "RHBZ#2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18584",
"url": "https://github.com/prometheus/prometheus/pull/18584"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18585",
"url": "https://github.com/prometheus/prometheus/pull/18585"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm"
}
],
"release_date": "2026-05-04T18:13:12.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"known_not_affected": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T10:08:44+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36651"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321_arm64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79_amd64",
"Red Hat Edge Manager 1.0:registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:36796
Vulnerability from csaf_redhat - Published: 2026-07-08 15:52 - Updated: 2026-07-14 10:38A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — | ||
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Edge Manager Version 1.0.3 Security Update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused\nmanagement of edge devices and applications. It supports image-mode RHEL and\ncontainer workloads that run on Podman/Docker or Kubernetes.\n\nRHEM is now available as a standalone feature, providing greater flexibility for\nedge deployments. In addition to the standalone version, RHEM continues to be\noffered as a plugin for the following platforms:\n\nRed Hat Advanced Cluster Management (RHACM): Extends fleet management to edge\ndevices.\nRed Hat Ansible Automation Platform (AAP): Integrates edge management with\nAnsible automation.\n\nThis integration enables organizations to optimize the management and\norchestration of their fleets of edge devices; whether its thousands of\ndispersed retail point-of-sale systems or industrial machinery on remote factory\nfloors.\n\nValue for customers and partners:\n\n* This solution not only helps customers manage thousands of devices but helps\nscale operations.\n* To manage large-scale deployments, customers need to be able to integrate with\ntheir existing management systems, support remote configuration and over-the-air\nupdates, and collect telemetry data for advanced analytics.\n* Red Hat Edge Manager offers a simple and security-focused lifecycle\nmanagement, from onboarding to decommissioning of edge devices.\n\nThis complete end-to-end solution empowers organizations to gain the most value\nfrom the fleets of devices that generate data, all from a centralized location.\n\nSecurity fixes:\n\n* golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate (CVE-2026-39835)\n* golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses (CVE-2026-39830)\n* golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters (CVE-2026-39829)\n* golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions (CVE-2026-39828)\n* golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation (CVE-2026-46595)\n* golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions (CVE-2026-39832)\n* golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey (CVE-2026-42508)\n* golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing (CVE-2026-39821)\n* Go net package: Denial of Service via long CNAME response in LookupCNAME (CVE-2026-33811)\n* Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n* Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n* Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n* Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n* Go crypto/x509: Incorrect enforcement of email constraints (CVE-2026-27137)\n* Go net/url: Incorrect parsing of IPv6 host literals (CVE-2026-25679)\n* golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33815)\n* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33816)\n* gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n* Prometheus: Information disclosure of Azure OAuth client secret via config API (CVE-2026-42151)\n* Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint (CVE-2026-42154)\n* Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n* Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code (CVE-2026-35469)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36796",
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "2455972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
},
{
"category": "external",
"summary": "2455975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
},
{
"category": "external",
"summary": "2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "2457729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457729"
},
{
"category": "external",
"summary": "2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36796.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Edge Manager Version 1.0.3 Security Update",
"tracking": {
"current_release_date": "2026-07-14T10:38:49+00:00",
"generator": {
"date": "2026-07-14T10:38:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36796",
"initial_release_date": "2026-07-08T15:52:29+00:00",
"revision_history": [
{
"date": "2026-07-08T15:52:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T15:52:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T10:38:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEM 1.0 for RHEL 9",
"product": {
"name": "RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:edge_manager:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Edge Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-0:1.0.3-1.el9em.src",
"product": {
"name": "flightctl-0:1.0.3-1.el9em.src",
"product_id": "flightctl-0:1.0.3-1.el9em.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl@1.0.3-1.el9em?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-services-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-agent@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-cli@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-observability@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-services@1.0.3-1.el9em?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product_id": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-telemetry-gateway@1.0.3-1.el9em?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product": {
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product_id": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/flightctl-selinux@1.0.3-1.el9em?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-0:1.0.3-1.el9em.src as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src"
},
"product_reference": "flightctl-0:1.0.3-1.el9em.src",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-agent-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-agent-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-cli-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-cli-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-observability-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-observability-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-selinux-0:1.0.3-1.el9em.noarch as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
},
"product_reference": "flightctl-selinux-0:1.0.3-1.el9em.noarch",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-services-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-services-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"relates_to_product_reference": "9Base-RHEM-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64 as a component of RHEM 1.0 for RHEL 9",
"product_id": "9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
},
"product_reference": "flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64",
"relates_to_product_reference": "9Base-RHEM-1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-33815",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:25.130006+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455975"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33815"
},
{
"category": "external",
"summary": "RHBZ#2455975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33815",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4771",
"url": "https://pkg.go.dev/vuln/GO-2026-4771"
}
],
"release_date": "2026-04-07T15:19:24.344000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-33816",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:14.142946+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455972"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33816"
},
{
"category": "external",
"summary": "RHBZ#2455972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33816",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4772",
"url": "https://pkg.go.dev/vuln/GO-2026-4772"
}
],
"release_date": "2026-04-07T15:19:24.529000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-35469",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-13T03:52:35+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2457729"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw affecting OpenShift Container Platform. An attacker with specific elevated cluster roles, such as those permitting pod port forwarding, execution, attachment, or node proxying, could exploit a vulnerability in the SPDY streaming code of Kubelet, CRI-O, and kube-apiserver, leading to unresponsiveness of these critical components.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-35469"
},
{
"category": "external",
"summary": "RHBZ#2457729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457729"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-35469",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35469"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469"
}
],
"release_date": "2026-04-13T23:59:59+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this issue, review and restrict the assignment of Kubernetes cluster roles `pods/portforward (create)`, `pods/exec (create)`, `pods/attach (create)`, and `nodes/proxy (get/create)` to untrusted users or service accounts. Ensure that only authorized and necessary entities possess these permissions. Modifying RBAC policies can impact the functionality of applications and services that rely on these permissions; careful testing is recommended.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42154",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-05-04T19:02:19.626646+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus. An unauthenticated attacker can exploit the remote read endpoint (`/api/v1/read`) by sending a specially crafted, small snappy-compressed payload. This payload causes a disproportionately large memory allocation, leading to memory exhaustion and a Denial of Service (DoS) by crashing the Prometheus process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in Prometheus, allowing an unauthenticated remote attacker to crash the Prometheus process. This could lead to service unavailability in Red Hat products that deploy Prometheus for monitoring, as the remote read endpoint does not properly validate snappy-compressed request lengths.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "RHBZ#2466505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42154"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18584",
"url": "https://github.com/prometheus/prometheus/pull/18584"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18585",
"url": "https://github.com/prometheus/prometheus/pull/18585"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-8rm2-7qqf-34qm"
}
],
"release_date": "2026-05-04T18:13:12.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"known_not_affected": [
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:52:29+00:00",
"details": "See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36796"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHEM-1.0:flightctl-0:1.0.3-1.el9em.src",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-agent-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-cli-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-observability-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-selinux-0:1.0.3-1.el9em.noarch",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-services-0:1.0.3-1.el9em.x86_64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.aarch64",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.ppc64le",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.s390x",
"9Base-RHEM-1.0:flightctl-telemetry-gateway-0:1.0.3-1.el9em.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:9385
Vulnerability from csaf_redhat - Published: 2026-04-21 15:08 - Updated: 2026-07-14 10:39A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
A flaw was found in the `github.com/antchfx/xpath` component. A remote attacker could exploit this vulnerability by submitting crafted Boolean XPath expressions that evaluate to true. This can cause an infinite loop in the `logicalQuery.Select` function, leading to 100% CPU utilization and a Denial of Service (DoS) condition for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Workaround
|
A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
A flaw was found in github.com/buger/jsonparser. The Delete function, when processing malformed JSON input, fails to properly validate offsets. This vulnerability can lead to a negative slice index and a runtime panic, allowing a remote attacker to cause a denial of service (DoS) by providing specially crafted JSON data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift distributed tracing platform (Tempo) 3.9.2 has been released",
"title": "Topic"
},
{
"category": "general",
"text": "This release of the Red Hat OpenShift distributed tracing platform (Tempo) provides security improvements and bug fixes.\n\n\nBreaking changes:\n\n* None.\n\n\nDeprecations:\n\n* None.\n\n\nTechnology Preview features:\n\n* None.\n\n\nEnhancements:\n\n* None.\n\n\nBug fixes:\n\n* gRPC-Go authorization bypass vulnerability fix: Previously, gRPC-Go was vulnerable to an authorization bypass attack. This issue occurred because the HTTP/2 :path pseudo-header was not properly validated. Remote attackers could send raw HTTP/2 frames with a malformed :path that omitted the mandatory leading slash to bypass defined security policies. With this update, gRPC-Go properly validates the :path pseudo-header and rejects malformed requests. As a result, attackers can no longer bypass security policies to gain unauthorized access to services or disclose information. For more information, see https://access.redhat.com/security/cve/cve-2026-33186.\n\n* XPath component fix: Previously, the github.com/antchfx/xpath component did not properly handle certain Boolean XPath expressions. A remote attacker could submit a crafted expression that caused an infinite loop, resulting in 100% CPU utilization and a denial-of-service condition. With this update, the XPath component correctly processes Boolean expressions that evaluate to true. The system no longer enters an infinite loop when handling these expressions. For more information, see https://access.redhat.com/security/cve/cve-2026-4645.\n\n* Go JOSE denial-of-service vulnerability fix: Previously, the Go JOSE library for handling JSON Web Encryption (JWE) objects was vulnerable to a denial-of-service (DoS) attack. This issue occurred because the application failed when decrypting a specially crafted JWE object that specified a key wrapping algorithm but contained an empty encrypted key field. With this update, Go JOSE properly validates the encrypted key field before decryption. As a result, the application no longer crashes when processing malformed JWE objects, and the service remains available to legitimate users. For more information, see https://access.redhat.com/security/cve/cve-2026-34986.\n\n* Lodash _.template function fix: Previously, the lodash _.template function validated the variable option but did not validate options.imports key names. Both options passed values to the same code execution path. An attacker with the ability to control options.imports key names or pollute Object.prototype could exploit this gap to execute arbitrary code. With this update, lodash validates options.imports key names by using the same rules applied to the variable option. The _.template function rejects invalid key names and prevents code injection through this path. For more information, see https://access.redhat.com/security/cve/cve-2026-4800.\n\n* Go crypto/x509 and crypto/tls packages fix: Previously, the Go standard library crypto/x509 and crypto/tls packages did not limit the number of intermediate certificates processed during certificate chain building. An attacker could provide an excessive number of intermediate certificates, causing the system to perform an uncontrolled amount of work and resulting in a denial-of-service condition. With this update, the packages limit the number of intermediate certificates accepted during certificate chain validation. The system rejects certificate chains that exceed this limit. For more information, see https://access.redhat.com/security/cve/cve-2026-32280.\n\n* Go Root.Chmod function fix: Previously, the Root.Chmod function in the Go standard library internal/syscall/unix package had a race condition between checking and modifying a target file. An attacker could replace the target with a symbolic link after the check but before the operation completed, causing the permission change to apply to the linked file instead. This allowed an attacker to bypass directory restrictions and change permissions on unintended files. With this update, the Root.Chmod function prevents this race condition. The function no longer follows symbolic links that replace the target during execution. For more information, see https://access.redhat.com/security/cve/cve-2026-32282.\n\n* Go crypto/x509 package fix: Previously, the Go crypto/x509 package applied excluded DNS constraints to wildcard Subject Alternative Names (SANs) in a case-sensitive manner. An attacker could bypass certificate validation by using a different case in the wildcard SAN than the excluded DNS constraint specified. This allowed the system to accept a malicious certificate that should have been rejected. With this update, the package applies DNS constraints case-insensitively when validating wildcard SANs. Certificate chain verification correctly rejects certificates that match excluded DNS constraints regardless of case. For more information, see https://access.redhat.com/security/cve/cve-2026-33810.\n\n* Go crypto/tls component fix: Previously, the Go crypto/tls component did not re-validate certificates against updated certificate authority (CA) settings during TLS session resumption. If CA settings changed between the initial handshake and a resumed session, the component used the original CA settings. An attacker could exploit this to bypass certificate validation and establish a connection that should have been rejected. With this update, the component validates certificates against the current CA settings during session resumption. Resumed sessions that no longer meet CA requirements are rejected. For more information, see https://access.redhat.com/security/cve/cve-2025-68121.\n\n* jsonparser Delete function fix: Previously, the Delete function in the github.com/buger/jsonparser component did not validate offsets when processing malformed JSON input. A remote attacker could provide crafted JSON data that caused a runtime panic, resulting in a denial-of-service condition. With this update, the Delete function validates offsets before processing. The function handles malformed JSON input as expected. For more information, see https://access.redhat.com/security/cve/cve-2026-32285.\n\n* path-to-regexp component fix: Previously, the path-to-regexp component did not limit the complexity of generated regular expressions. A remote attacker could provide input containing multiple sequential optional groups, causing exponential growth in the generated expression and excessive resource consumption. This resulted in a denial-of-service condition. With this update, the component limits regular expression complexity. Input patterns with sequential optional groups no longer cause excessive resource consumption. For more information, see https://access.redhat.com/security/cve/cve-2026-4926.\n\n* Go net/url.Parse function fix: Previously, the Go net/url.Parse function did not properly validate the host component of URLs containing IP-literals. The function ignored invalid characters preceding IP-literals and accepted URLs that should have been rejected. With this update, the function validates the entire host component. URLs with invalid characters before IP-literals are rejected as malformed. For more information, see https://access.redhat.com/security/cve/cve-2026-25679.\n\n* Go crypto/x509 module fix: Previously, the Go crypto/x509 module did not apply all email address constraints when validating certificates. If a certificate contained multiple email constraints with the same local portion but different domain portions, the module only enforced the last constraint and ignored the others. With this update, the module applies all email address constraints during certificate chain validation. Certificates are validated against every specified email constraint. For more information, see https://access.redhat.com/security/cve/cve-2026-27137.\n\n\nKnown issues:\n\n* Gateway fails to forward OTLP HTTP traffic when receiver TLS is enabled. When Tempo Monolithic is configured with `multitenancy.enabled: true` and `ingestion.otlp.http.tls.enabled: true`, the gateway forwards OTLP HTTP traffic to the Tempo receiver using plain HTTP instead of HTTPS. As a consequence, the connection fails with a `connection reset by peer` error because the receiver expects TLS connections. OTLP gRPC ingestion through the gateway is not affected. Jira issue: https://issues.redhat.com/browse/TRACING-5973.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:9385",
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32285",
"url": "https://access.redhat.com/security/cve/CVE-2026-32285"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4645",
"url": "https://access.redhat.com/security/cve/CVE-2026-4645"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4926",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-tempo",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-tempo"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_9385.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.9.2 release",
"tracking": {
"current_release_date": "2026-07-14T10:39:01+00:00",
"generator": {
"date": "2026-07-14T10:39:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:9385",
"initial_release_date": "2026-04-21T15:08:38+00:00",
"revision_history": [
{
"date": "2026-04-21T15:08:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-21T15:08:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T10:39:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.9.3",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-operator-bundle@sha256%3Ad180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776674955"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435643"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435608"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3A034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3Aa5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435565"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3A1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435613"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435680"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3Ac939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435643"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435608"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3Aa66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3A0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435565"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3A3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435613"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435680"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435643"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435608"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3A9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3A1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435565"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3A820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435613"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435680"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435643"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435608"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3Ab68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3Ac7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435565"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3Aee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435613"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=1776435680"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64 as a component of Red Hat OpenShift distributed tracing 3.9.3",
"product_id": "Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.9.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-4645",
"discovery_date": "2026-03-23T06:02:52.120840+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `github.com/antchfx/xpath` component. A remote attacker could exploit this vulnerability by submitting crafted Boolean XPath expressions that evaluate to true. This can cause an infinite loop in the `logicalQuery.Select` function, leading to 100% CPU utilization and a Denial of Service (DoS) condition for the affected system.",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "A denial of service vulnerability was discovered in `github.com/antchfx/xpath`, with Important severity. Systems processing untrusted XPath expressions are vulnerable to an infinite loop, leading to 100% CPU utilization which would impact normal operations of the system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4645"
}
],
"release_date": "2026-03-17T20:58:59+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "To mitigate this issue, restrict the processing of untrusted or unvalidated XPath expressions by applications which utilize the `github.com/antchfx/xpath` component. Implement input validation and sanitization for all XPath expressions originating from external or untrusted sources. If possible, configure applications to only process XPath expressions from trusted sources or disable features that allow arbitrary XPath expression evaluation.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/antchfx/xpath: xpath: Denial of Service via crafted Boolean XPath expressions"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-4926",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-03-26T20:03:28.427630+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451867"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A remote attacker could exploit this vulnerability by providing specially crafted input that generates a regular expression with multiple sequential optional groups. This leads to an exponential growth in the generated regular expression, causing a Denial of Service (DoS) due to excessive resource consumption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in `path-to-regexp` that can lead to a Denial of Service. The vulnerability occurs when specially crafted input containing multiple sequential optional groups is used to generate regular expressions, causing exponential resource consumption.\n\nThe Red Hat Advanced Cluster Security is not affected by this issue since it\u0027s shipping a `path-to-regexp` version which doesn\u0027t contain the vulnerable code.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4926"
},
{
"category": "external",
"summary": "RHBZ#2451867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451867"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4926",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4926"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
}
],
"release_date": "2026-03-26T18:59:38+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, limit the use of multiple sequential optional groups in route patterns within applications that use `path-to-regexp`. Additionally, avoid directly passing user-controlled input as route patterns to prevent the generation of maliciously crafted regular expressions.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32285",
"cwe": {
"id": "CWE-1285",
"name": "Improper Validation of Specified Index, Position, or Offset in Input"
},
"discovery_date": "2026-03-26T20:01:54.925687+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2451846"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/buger/jsonparser. The Delete function, when processing malformed JSON input, fails to properly validate offsets. This vulnerability can lead to a negative slice index and a runtime panic, allowing a remote attacker to cause a denial of service (DoS) by providing specially crafted JSON data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/buger/jsonparser: github.com/buger/jsonparser: Denial of Service via malformed JSON input",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32285"
},
{
"category": "external",
"summary": "RHBZ#2451846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32285",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32285"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32285",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32285"
},
{
"category": "external",
"summary": "https://github.com/buger/jsonparser/issues/275",
"url": "https://github.com/buger/jsonparser/issues/275"
},
{
"category": "external",
"summary": "https://github.com/golang/vulndb/issues/4514",
"url": "https://github.com/golang/vulndb/issues/4514"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4514",
"url": "https://pkg.go.dev/vuln/GO-2026-4514"
}
],
"release_date": "2026-03-26T19:40:51.837000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/buger/jsonparser: github.com/buger/jsonparser: Denial of Service via malformed JSON input"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-21T15:08:38+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:034af4f19268a6ae63aa7f49ca70f0d1c0311fd269a3bdd79f337260c89ac052_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:9012c42fbb769f3e186bb9ade5f5a044a38e0db7336648050def9fb2f0057c9e_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:a66154755c86d821035cf83c940401ddc2a8d45b395f3a36d58f5755de621e43_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:b68e6b2f84171b46ba16b1a2e1d4e4624faacc09453cf14ca68e319e9c8b7115_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:59b7e5bd9dfbf299d3fb92747eccc89a0ac546939f0496deb0cbd418b016be30_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:61eacd3b26e3d12166e61a3cabe2137fb074f245ded11e1f745bb74839f077d4_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:9f8e4d6c9e6784baf45513552e8be6487d30d93679043519958b6cc47255b613_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:c939c718084a9f1cff2bb56f932398c58ee3968834ff31ce85c4d356423b6545_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0205c0565948891a128ed9b6d639582b20cc50123ad22a8cbbf414d4843f2fe8_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:15db63cb743ea84e1acc3d668543233b4bd566c73dc0f033ae8b43390f324764_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:63a9b773e467978769c428a538c8d75c28bfe52e069ac17d269fb7b3c5ad7f54_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:81a49b0518d578de0f8fafdb50cc844e1f6dbf1241d7a10856b8ae810fd873af_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:d180bac53d873bba131cedd40db06cd784d8dc4795d9bff85a6b33921cc1dd9c_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:1c4fa975d38a317a307967887524df0c7c3117a91452730978de55a70b41153b_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:3afa5f0d4f74e4d74a74ae9f2ed1c9cdd817473f3ae074de269af9625b77643d_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:820a6bdb3262f1350e06af22121ba6d454908ac6747fa64d768226e6ff77d982_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:ee7da439cd21c32b1bc419de7e6d00b13d755a7b360dfea2ff882f9b1a25aa9d_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:0a70a38b8b349197a0bd807e226803976c23fda03683f3d63b0687b9bd45d540_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:1dec0c1cd978d3f260d99133ac942a88e255708197f5ded6594db00082357d33_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a5befd5575eebc08f0c6ec8b928f8b5c286ebb3d2dfcdbcb0cdd696b54335299_amd64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:c7ae36b9d4c9bfb0750bdb7e9d7b897940ab5149eb670b44c1fe9b1ca7688910_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:0925a2af960b4714614d3f73a14b7a2a04de655cfcedbdd843c06ea5872d1987_s390x",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:53621f808c45a6c8aec0d2df240106a41b1f48c59bb3db648d3d20bb03cb92cf_arm64",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:55635b179e701a58643a4ffc148d75ed2d1e82a383783812484e3da9b7bedaf4_ppc64le",
"Red Hat OpenShift distributed tracing 3.9.3:registry.redhat.io/rhosdt/tempo-rhel9@sha256:9a0a8a33df8e58e391d28fae62e06378c4f3c26e4d81532d38728632698f637c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
SUSE-SU-2026:1320-1
Vulnerability from csaf_suse - Published: 2026-04-14 12:39 - Updated: 2026-04-14 12:39| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.26",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.26 fixes the following issues:\n\n- Update to go1.26.2 (bsc#1255111).\n- CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG (bsc#1261653).\n- CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination (bsc#1261654).\n- CVE-2026-27144: cmd/compile: no-op interface conversion bypasses overlap checking (bsc#1261655).\n- CVE-2026-32280: crypto/x509: unexpected work during chain building (bsc#1261656).\n- CVE-2026-32281: crypto/x509: inefficient policy validation (bsc#1261657).\n- CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux (bsc#1261658).\n- CVE-2026-32283: crypto/tls: multiple key update handshake messages can cause connection to deadlock (bsc#1261659).\n- CVE-2026-32288: archive/tar: unbounded allocation when parsing old format GNU sparse map (bsc#1261660).\n- CVE-2026-32289: html/template: JS template literal context incorrectly tracked (bsc#1261661).\n- CVE-2026-33810: crypto/x509: excluded DNS constraints not properly applied to wildcard domains (bsc#1261662).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1320,SUSE-SLE-Module-Development-Tools-15-SP7-2026-1320,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1320,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1320,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1320,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1320,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1320,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1320,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1320,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1320,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1320,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1320",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1320-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1320-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261320-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1320-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045527.html"
},
{
"category": "self",
"summary": "SUSE Bug 1255111",
"url": "https://bugzilla.suse.com/1255111"
},
{
"category": "self",
"summary": "SUSE Bug 1261653",
"url": "https://bugzilla.suse.com/1261653"
},
{
"category": "self",
"summary": "SUSE Bug 1261654",
"url": "https://bugzilla.suse.com/1261654"
},
{
"category": "self",
"summary": "SUSE Bug 1261655",
"url": "https://bugzilla.suse.com/1261655"
},
{
"category": "self",
"summary": "SUSE Bug 1261656",
"url": "https://bugzilla.suse.com/1261656"
},
{
"category": "self",
"summary": "SUSE Bug 1261657",
"url": "https://bugzilla.suse.com/1261657"
},
{
"category": "self",
"summary": "SUSE Bug 1261658",
"url": "https://bugzilla.suse.com/1261658"
},
{
"category": "self",
"summary": "SUSE Bug 1261659",
"url": "https://bugzilla.suse.com/1261659"
},
{
"category": "self",
"summary": "SUSE Bug 1261660",
"url": "https://bugzilla.suse.com/1261660"
},
{
"category": "self",
"summary": "SUSE Bug 1261661",
"url": "https://bugzilla.suse.com/1261661"
},
{
"category": "self",
"summary": "SUSE Bug 1261662",
"url": "https://bugzilla.suse.com/1261662"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27140 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27143 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32280 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32281 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32282 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32283 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32288 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32289 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33810 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33810/"
}
],
"title": "Security update for go1.26",
"tracking": {
"current_release_date": "2026-04-14T12:39:43Z",
"generator": {
"date": "2026-04-14T12:39:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1320-1",
"initial_release_date": "2026-04-14T12:39:43Z",
"revision_history": [
{
"date": "2026-04-14T12:39:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.2-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64",
"product_id": "go1.26-1.26.2-150000.1.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"product_id": "go1.26-doc-1.26.2-150000.1.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"product_id": "go1.26-race-1.26.2-150000.1.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.2-150000.1.9.1.i586",
"product": {
"name": "go1.26-1.26.2-150000.1.9.1.i586",
"product_id": "go1.26-1.26.2-150000.1.9.1.i586"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.2-150000.1.9.1.i586",
"product": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.i586",
"product_id": "go1.26-doc-1.26.2-150000.1.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"product_id": "go1.26-1.26.2-150000.1.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"product_id": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"product_id": "go1.26-race-1.26.2-150000.1.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.2-150000.1.9.1.s390x",
"product": {
"name": "go1.26-1.26.2-150000.1.9.1.s390x",
"product_id": "go1.26-1.26.2-150000.1.9.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"product": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"product_id": "go1.26-doc-1.26.2-150000.1.9.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"product": {
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"product_id": "go1.26-race-1.26.2-150000.1.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.2-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64",
"product_id": "go1.26-1.26.2-150000.1.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"product_id": "go1.26-doc-1.26.2-150000.1.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"product_id": "go1.26-race-1.26.2-150000.1.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.2-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-race-1.26.2-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27140"
}
],
"notes": [
{
"category": "general",
"text": "SWIG file names containing \u0027cgo\u0027 and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27140",
"url": "https://www.suse.com/security/cve/CVE-2026-27140"
},
{
"category": "external",
"summary": "SUSE Bug 1261653 for CVE-2026-27140",
"url": "https://bugzilla.suse.com/1261653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "important"
}
],
"title": "CVE-2026-27140"
},
{
"cve": "CVE-2026-27143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27143"
}
],
"notes": [
{
"category": "general",
"text": "Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27143",
"url": "https://www.suse.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "SUSE Bug 1261654 for CVE-2026-27143",
"url": "https://bugzilla.suse.com/1261654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "important"
}
],
"title": "CVE-2026-27143"
},
{
"cve": "CVE-2026-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27144"
}
],
"notes": [
{
"category": "general",
"text": "The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27144",
"url": "https://www.suse.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1261655 for CVE-2026-27144",
"url": "https://bugzilla.suse.com/1261655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-27144"
},
{
"cve": "CVE-2026-32280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32280"
}
],
"notes": [
{
"category": "general",
"text": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32280",
"url": "https://www.suse.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "SUSE Bug 1261656 for CVE-2026-32280",
"url": "https://bugzilla.suse.com/1261656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "important"
}
],
"title": "CVE-2026-32280"
},
{
"cve": "CVE-2026-32281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32281"
}
],
"notes": [
{
"category": "general",
"text": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32281",
"url": "https://www.suse.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "SUSE Bug 1261657 for CVE-2026-32281",
"url": "https://bugzilla.suse.com/1261657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-32281"
},
{
"cve": "CVE-2026-32282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32282"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32282",
"url": "https://www.suse.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "SUSE Bug 1261658 for CVE-2026-32282",
"url": "https://bugzilla.suse.com/1261658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-32282"
},
{
"cve": "CVE-2026-32283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32283"
}
],
"notes": [
{
"category": "general",
"text": "If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32283",
"url": "https://www.suse.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "SUSE Bug 1261659 for CVE-2026-32283",
"url": "https://bugzilla.suse.com/1261659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-32283"
},
{
"cve": "CVE-2026-32288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32288"
}
],
"notes": [
{
"category": "general",
"text": "tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the \"old GNU sparse map\" format.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32288",
"url": "https://www.suse.com/security/cve/CVE-2026-32288"
},
{
"category": "external",
"summary": "SUSE Bug 1261660 for CVE-2026-32288",
"url": "https://bugzilla.suse.com/1261660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-32288"
},
{
"cve": "CVE-2026-32289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32289"
}
],
"notes": [
{
"category": "general",
"text": "Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being applied. These issues could cause actions within JS template literals to be incorrectly or improperly escaped, leading to XSS vulnerabilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32289",
"url": "https://www.suse.com/security/cve/CVE-2026-32289"
},
{
"category": "external",
"summary": "SUSE Bug 1261661 for CVE-2026-32289",
"url": "https://bugzilla.suse.com/1261661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-32289"
},
{
"cve": "CVE-2026-33810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33810"
}
],
"notes": [
{
"category": "general",
"text": "When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33810",
"url": "https://www.suse.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "SUSE Bug 1261662 for CVE-2026-33810",
"url": "https://bugzilla.suse.com/1261662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.2-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.2-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:39:43Z",
"details": "moderate"
}
],
"title": "CVE-2026-33810"
}
]
}
SUSE-SU-2026:1321-1
Vulnerability from csaf_suse - Published: 2026-04-14 12:40 - Updated: 2026-04-14 12:40| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.25",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.25 fixes the following issues:\n\n- Update to go1.25.9 (bsc#1244485).\n- CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG (bsc#1261653).\n- CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination (bsc#1261654).\n- CVE-2026-27144: cmd/compile: no-op interface conversion bypasses overlap checking (bsc#1261655).\n- CVE-2026-32280: crypto/x509: unexpected work during chain building (bsc#1261656).\n- CVE-2026-32281: crypto/x509: inefficient policy validation (bsc#1261657).\n- CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux (bsc#1261658).\n- CVE-2026-32283: crypto/tls: multiple key update handshake messages can cause connection to deadlock (bsc#1261659).\n- CVE-2026-32288: archive/tar: unbounded allocation when parsing old format GNU sparse map (bsc#1261660).\n- CVE-2026-32289: html/template: JS template literal context incorrectly tracked (bsc#1261661).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1321,SUSE-SLE-Module-Development-Tools-15-SP7-2026-1321,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1321,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1321,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1321,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1321,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1321,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1321,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1321,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1321,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1321,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1321",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1321-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1321-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261321-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1321-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045526.html"
},
{
"category": "self",
"summary": "SUSE Bug 1244485",
"url": "https://bugzilla.suse.com/1244485"
},
{
"category": "self",
"summary": "SUSE Bug 1261653",
"url": "https://bugzilla.suse.com/1261653"
},
{
"category": "self",
"summary": "SUSE Bug 1261654",
"url": "https://bugzilla.suse.com/1261654"
},
{
"category": "self",
"summary": "SUSE Bug 1261655",
"url": "https://bugzilla.suse.com/1261655"
},
{
"category": "self",
"summary": "SUSE Bug 1261656",
"url": "https://bugzilla.suse.com/1261656"
},
{
"category": "self",
"summary": "SUSE Bug 1261657",
"url": "https://bugzilla.suse.com/1261657"
},
{
"category": "self",
"summary": "SUSE Bug 1261658",
"url": "https://bugzilla.suse.com/1261658"
},
{
"category": "self",
"summary": "SUSE Bug 1261659",
"url": "https://bugzilla.suse.com/1261659"
},
{
"category": "self",
"summary": "SUSE Bug 1261660",
"url": "https://bugzilla.suse.com/1261660"
},
{
"category": "self",
"summary": "SUSE Bug 1261661",
"url": "https://bugzilla.suse.com/1261661"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27140 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27143 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32280 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32281 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32282 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32283 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32288 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32289 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32289/"
}
],
"title": "Security update for go1.25",
"tracking": {
"current_release_date": "2026-04-14T12:40:53Z",
"generator": {
"date": "2026-04-14T12:40:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1321-1",
"initial_release_date": "2026-04-14T12:40:53Z",
"revision_history": [
{
"date": "2026-04-14T12:40:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-150000.1.35.1.aarch64",
"product": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64",
"product_id": "go1.25-1.25.9-150000.1.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"product": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"product_id": "go1.25-doc-1.25.9-150000.1.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"product": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"product_id": "go1.25-race-1.25.9-150000.1.35.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-150000.1.35.1.i586",
"product": {
"name": "go1.25-1.25.9-150000.1.35.1.i586",
"product_id": "go1.25-1.25.9-150000.1.35.1.i586"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-150000.1.35.1.i586",
"product": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.i586",
"product_id": "go1.25-doc-1.25.9-150000.1.35.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"product": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"product_id": "go1.25-1.25.9-150000.1.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"product": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"product_id": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"product": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"product_id": "go1.25-race-1.25.9-150000.1.35.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-150000.1.35.1.s390x",
"product": {
"name": "go1.25-1.25.9-150000.1.35.1.s390x",
"product_id": "go1.25-1.25.9-150000.1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"product": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"product_id": "go1.25-doc-1.25.9-150000.1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"product": {
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"product_id": "go1.25-race-1.25.9-150000.1.35.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-150000.1.35.1.x86_64",
"product": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64",
"product_id": "go1.25-1.25.9-150000.1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"product": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"product_id": "go1.25-doc-1.25.9-150000.1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"product": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"product_id": "go1.25-race-1.25.9-150000.1.35.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-150000.1.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-150000.1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27140"
}
],
"notes": [
{
"category": "general",
"text": "SWIG file names containing \u0027cgo\u0027 and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27140",
"url": "https://www.suse.com/security/cve/CVE-2026-27140"
},
{
"category": "external",
"summary": "SUSE Bug 1261653 for CVE-2026-27140",
"url": "https://bugzilla.suse.com/1261653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "important"
}
],
"title": "CVE-2026-27140"
},
{
"cve": "CVE-2026-27143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27143"
}
],
"notes": [
{
"category": "general",
"text": "Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27143",
"url": "https://www.suse.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "SUSE Bug 1261654 for CVE-2026-27143",
"url": "https://bugzilla.suse.com/1261654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "important"
}
],
"title": "CVE-2026-27143"
},
{
"cve": "CVE-2026-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27144"
}
],
"notes": [
{
"category": "general",
"text": "The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27144",
"url": "https://www.suse.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1261655 for CVE-2026-27144",
"url": "https://bugzilla.suse.com/1261655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-27144"
},
{
"cve": "CVE-2026-32280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32280"
}
],
"notes": [
{
"category": "general",
"text": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32280",
"url": "https://www.suse.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "SUSE Bug 1261656 for CVE-2026-32280",
"url": "https://bugzilla.suse.com/1261656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "important"
}
],
"title": "CVE-2026-32280"
},
{
"cve": "CVE-2026-32281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32281"
}
],
"notes": [
{
"category": "general",
"text": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32281",
"url": "https://www.suse.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "SUSE Bug 1261657 for CVE-2026-32281",
"url": "https://bugzilla.suse.com/1261657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-32281"
},
{
"cve": "CVE-2026-32282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32282"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32282",
"url": "https://www.suse.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "SUSE Bug 1261658 for CVE-2026-32282",
"url": "https://bugzilla.suse.com/1261658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-32282"
},
{
"cve": "CVE-2026-32283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32283"
}
],
"notes": [
{
"category": "general",
"text": "If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32283",
"url": "https://www.suse.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "SUSE Bug 1261659 for CVE-2026-32283",
"url": "https://bugzilla.suse.com/1261659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-32283"
},
{
"cve": "CVE-2026-32288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32288"
}
],
"notes": [
{
"category": "general",
"text": "tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the \"old GNU sparse map\" format.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32288",
"url": "https://www.suse.com/security/cve/CVE-2026-32288"
},
{
"category": "external",
"summary": "SUSE Bug 1261660 for CVE-2026-32288",
"url": "https://bugzilla.suse.com/1261660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-32288"
},
{
"cve": "CVE-2026-32289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32289"
}
],
"notes": [
{
"category": "general",
"text": "Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being applied. These issues could cause actions within JS template literals to be incorrectly or improperly escaped, leading to XSS vulnerabilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32289",
"url": "https://www.suse.com/security/cve/CVE-2026-32289"
},
{
"category": "external",
"summary": "SUSE Bug 1261661 for CVE-2026-32289",
"url": "https://bugzilla.suse.com/1261661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.9-150000.1.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.9-150000.1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-14T12:40:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-32289"
}
]
}
SUSE-SU-2026:1580-1
Vulnerability from csaf_suse - Published: 2026-04-23 16:38 - Updated: 2026-04-23 16:38| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.26-openssl",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.26-openssl fixes the following issues:\n\n- Update to go1.26.2 (bsc#1255111).\n- CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG (bsc#1261653).\n- CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination (bsc#1261654).\n- CVE-2026-27144: cmd/compile: no-op interface conversion bypasses overlap checking (bsc#1261655).\n- CVE-2026-32280: crypto/x509: unexpected work during chain building (bsc#1261656).\n- CVE-2026-32281: crypto/x509: inefficient policy validation (bsc#1261657).\n- CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux (bsc#1261658).\n- CVE-2026-32283: crypto/tls: multiple key update handshake messages can cause connection to deadlock (bsc#1261659).\n- CVE-2026-32288: archive/tar: unbounded allocation when parsing old format GNU sparse map (bsc#1261660).\n- CVE-2026-32289: html/template: JS template literal context incorrectly tracked (bsc#1261661).\n- CVE-2026-33810: crypto/x509: excluded DNS constraints not properly applied to wildcard domains (bsc#1261662).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1580,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1580,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1580,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1580,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1580,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1580,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1580,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1580,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1580",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1580-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1580-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261580-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1580-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045927.html"
},
{
"category": "self",
"summary": "SUSE Bug 1255111",
"url": "https://bugzilla.suse.com/1255111"
},
{
"category": "self",
"summary": "SUSE Bug 1261653",
"url": "https://bugzilla.suse.com/1261653"
},
{
"category": "self",
"summary": "SUSE Bug 1261654",
"url": "https://bugzilla.suse.com/1261654"
},
{
"category": "self",
"summary": "SUSE Bug 1261655",
"url": "https://bugzilla.suse.com/1261655"
},
{
"category": "self",
"summary": "SUSE Bug 1261656",
"url": "https://bugzilla.suse.com/1261656"
},
{
"category": "self",
"summary": "SUSE Bug 1261657",
"url": "https://bugzilla.suse.com/1261657"
},
{
"category": "self",
"summary": "SUSE Bug 1261658",
"url": "https://bugzilla.suse.com/1261658"
},
{
"category": "self",
"summary": "SUSE Bug 1261659",
"url": "https://bugzilla.suse.com/1261659"
},
{
"category": "self",
"summary": "SUSE Bug 1261660",
"url": "https://bugzilla.suse.com/1261660"
},
{
"category": "self",
"summary": "SUSE Bug 1261661",
"url": "https://bugzilla.suse.com/1261661"
},
{
"category": "self",
"summary": "SUSE Bug 1261662",
"url": "https://bugzilla.suse.com/1261662"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27140 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27143 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32280 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32281 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32282 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32283 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32288 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32289 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33810 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33810/"
}
],
"title": "Security update for go1.26-openssl",
"tracking": {
"current_release_date": "2026-04-23T16:38:35Z",
"generator": {
"date": "2026-04-23T16:38:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1580-1",
"initial_release_date": "2026-04-23T16:38:35Z",
"revision_history": [
{
"date": "2026-04-23T16:38:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"product": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"product_id": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"product": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"product_id": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"product": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"product_id": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.2-150000.1.6.1.i586",
"product": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.i586",
"product_id": "go1.26-openssl-1.26.2-150000.1.6.1.i586"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.i586",
"product": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.i586",
"product_id": "go1.26-openssl-doc-1.26.2-150000.1.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"product_id": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"product_id": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"product_id": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"product": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"product_id": "go1.26-openssl-1.26.2-150000.1.6.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"product": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"product_id": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"product": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"product_id": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"product": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"product_id": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"product": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"product_id": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"product": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"product_id": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27140"
}
],
"notes": [
{
"category": "general",
"text": "SWIG file names containing \u0027cgo\u0027 and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27140",
"url": "https://www.suse.com/security/cve/CVE-2026-27140"
},
{
"category": "external",
"summary": "SUSE Bug 1261653 for CVE-2026-27140",
"url": "https://bugzilla.suse.com/1261653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "important"
}
],
"title": "CVE-2026-27140"
},
{
"cve": "CVE-2026-27143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27143"
}
],
"notes": [
{
"category": "general",
"text": "Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27143",
"url": "https://www.suse.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "SUSE Bug 1261654 for CVE-2026-27143",
"url": "https://bugzilla.suse.com/1261654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "important"
}
],
"title": "CVE-2026-27143"
},
{
"cve": "CVE-2026-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27144"
}
],
"notes": [
{
"category": "general",
"text": "The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27144",
"url": "https://www.suse.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1261655 for CVE-2026-27144",
"url": "https://bugzilla.suse.com/1261655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-27144"
},
{
"cve": "CVE-2026-32280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32280"
}
],
"notes": [
{
"category": "general",
"text": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32280",
"url": "https://www.suse.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "SUSE Bug 1261656 for CVE-2026-32280",
"url": "https://bugzilla.suse.com/1261656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "important"
}
],
"title": "CVE-2026-32280"
},
{
"cve": "CVE-2026-32281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32281"
}
],
"notes": [
{
"category": "general",
"text": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32281",
"url": "https://www.suse.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "SUSE Bug 1261657 for CVE-2026-32281",
"url": "https://bugzilla.suse.com/1261657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-32281"
},
{
"cve": "CVE-2026-32282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32282"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32282",
"url": "https://www.suse.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "SUSE Bug 1261658 for CVE-2026-32282",
"url": "https://bugzilla.suse.com/1261658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-32282"
},
{
"cve": "CVE-2026-32283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32283"
}
],
"notes": [
{
"category": "general",
"text": "If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32283",
"url": "https://www.suse.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "SUSE Bug 1261659 for CVE-2026-32283",
"url": "https://bugzilla.suse.com/1261659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-32283"
},
{
"cve": "CVE-2026-32288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32288"
}
],
"notes": [
{
"category": "general",
"text": "tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the \"old GNU sparse map\" format.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32288",
"url": "https://www.suse.com/security/cve/CVE-2026-32288"
},
{
"category": "external",
"summary": "SUSE Bug 1261660 for CVE-2026-32288",
"url": "https://bugzilla.suse.com/1261660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-32288"
},
{
"cve": "CVE-2026-32289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32289"
}
],
"notes": [
{
"category": "general",
"text": "Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being applied. These issues could cause actions within JS template literals to be incorrectly or improperly escaped, leading to XSS vulnerabilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32289",
"url": "https://www.suse.com/security/cve/CVE-2026-32289"
},
{
"category": "external",
"summary": "SUSE Bug 1261661 for CVE-2026-32289",
"url": "https://bugzilla.suse.com/1261661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-32289"
},
{
"cve": "CVE-2026-33810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33810"
}
],
"notes": [
{
"category": "general",
"text": "When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33810",
"url": "https://www.suse.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "SUSE Bug 1261662 for CVE-2026-33810",
"url": "https://bugzilla.suse.com/1261662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.2-150000.1.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.2-150000.1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:38:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-33810"
}
]
}
SUSE-SU-2026:1581-1
Vulnerability from csaf_suse - Published: 2026-04-23 16:39 - Updated: 2026-04-23 16:39| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.25-openssl",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.25-openssl fixes the following issues:\n\n- Update to go1.25.9 (bsc#1244485).\n- CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG (bsc#1261653).\n- CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination (bsc#1261654).\n- CVE-2026-27144: cmd/compile: no-op interface conversion bypasses overlap checking (bsc#1261655).\n- CVE-2026-32280: crypto/x509: unexpected work during chain building (bsc#1261656).\n- CVE-2026-32281: crypto/x509: inefficient policy validation (bsc#1261657).\n- CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux (bsc#1261658).\n- CVE-2026-32283: crypto/tls: multiple key update handshake messages can cause connection to deadlock (bsc#1261659).\n- CVE-2026-32288: archive/tar: unbounded allocation when parsing old format GNU sparse map (bsc#1261660).\n- CVE-2026-32289: html/template: JS template literal context incorrectly tracked (bsc#1261661).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1581,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1581,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1581,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1581,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1581,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1581,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1581,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1581,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1581",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1581-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1581-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261581-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1581-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045926.html"
},
{
"category": "self",
"summary": "SUSE Bug 1244485",
"url": "https://bugzilla.suse.com/1244485"
},
{
"category": "self",
"summary": "SUSE Bug 1261653",
"url": "https://bugzilla.suse.com/1261653"
},
{
"category": "self",
"summary": "SUSE Bug 1261654",
"url": "https://bugzilla.suse.com/1261654"
},
{
"category": "self",
"summary": "SUSE Bug 1261655",
"url": "https://bugzilla.suse.com/1261655"
},
{
"category": "self",
"summary": "SUSE Bug 1261656",
"url": "https://bugzilla.suse.com/1261656"
},
{
"category": "self",
"summary": "SUSE Bug 1261657",
"url": "https://bugzilla.suse.com/1261657"
},
{
"category": "self",
"summary": "SUSE Bug 1261658",
"url": "https://bugzilla.suse.com/1261658"
},
{
"category": "self",
"summary": "SUSE Bug 1261659",
"url": "https://bugzilla.suse.com/1261659"
},
{
"category": "self",
"summary": "SUSE Bug 1261660",
"url": "https://bugzilla.suse.com/1261660"
},
{
"category": "self",
"summary": "SUSE Bug 1261661",
"url": "https://bugzilla.suse.com/1261661"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27140 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27143 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32280 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32281 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32282 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32283 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32288 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32289 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32289/"
}
],
"title": "Security update for go1.25-openssl",
"tracking": {
"current_release_date": "2026-04-23T16:39:19Z",
"generator": {
"date": "2026-04-23T16:39:19Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1581-1",
"initial_release_date": "2026-04-23T16:39:19Z",
"revision_history": [
{
"date": "2026-04-23T16:39:19Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"product": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"product_id": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"product": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"product_id": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"product": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"product_id": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.9-150000.1.21.1.i586",
"product": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.i586",
"product_id": "go1.25-openssl-1.25.9-150000.1.21.1.i586"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.i586",
"product": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.i586",
"product_id": "go1.25-openssl-doc-1.25.9-150000.1.21.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"product": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"product_id": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"product": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"product_id": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"product": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"product_id": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"product": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"product_id": "go1.25-openssl-1.25.9-150000.1.21.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"product": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"product_id": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"product": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"product_id": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"product": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"product_id": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"product": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"product_id": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"product": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"product_id": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27140"
}
],
"notes": [
{
"category": "general",
"text": "SWIG file names containing \u0027cgo\u0027 and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27140",
"url": "https://www.suse.com/security/cve/CVE-2026-27140"
},
{
"category": "external",
"summary": "SUSE Bug 1261653 for CVE-2026-27140",
"url": "https://bugzilla.suse.com/1261653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "important"
}
],
"title": "CVE-2026-27140"
},
{
"cve": "CVE-2026-27143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27143"
}
],
"notes": [
{
"category": "general",
"text": "Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27143",
"url": "https://www.suse.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "SUSE Bug 1261654 for CVE-2026-27143",
"url": "https://bugzilla.suse.com/1261654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "important"
}
],
"title": "CVE-2026-27143"
},
{
"cve": "CVE-2026-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27144"
}
],
"notes": [
{
"category": "general",
"text": "The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27144",
"url": "https://www.suse.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1261655 for CVE-2026-27144",
"url": "https://bugzilla.suse.com/1261655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-27144"
},
{
"cve": "CVE-2026-32280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32280"
}
],
"notes": [
{
"category": "general",
"text": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32280",
"url": "https://www.suse.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "SUSE Bug 1261656 for CVE-2026-32280",
"url": "https://bugzilla.suse.com/1261656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "important"
}
],
"title": "CVE-2026-32280"
},
{
"cve": "CVE-2026-32281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32281"
}
],
"notes": [
{
"category": "general",
"text": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32281",
"url": "https://www.suse.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "SUSE Bug 1261657 for CVE-2026-32281",
"url": "https://bugzilla.suse.com/1261657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-32281"
},
{
"cve": "CVE-2026-32282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32282"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32282",
"url": "https://www.suse.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "SUSE Bug 1261658 for CVE-2026-32282",
"url": "https://bugzilla.suse.com/1261658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-32282"
},
{
"cve": "CVE-2026-32283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32283"
}
],
"notes": [
{
"category": "general",
"text": "If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32283",
"url": "https://www.suse.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "SUSE Bug 1261659 for CVE-2026-32283",
"url": "https://bugzilla.suse.com/1261659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-32283"
},
{
"cve": "CVE-2026-32288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32288"
}
],
"notes": [
{
"category": "general",
"text": "tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the \"old GNU sparse map\" format.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32288",
"url": "https://www.suse.com/security/cve/CVE-2026-32288"
},
{
"category": "external",
"summary": "SUSE Bug 1261660 for CVE-2026-32288",
"url": "https://bugzilla.suse.com/1261660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-32288"
},
{
"cve": "CVE-2026-32289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32289"
}
],
"notes": [
{
"category": "general",
"text": "Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being applied. These issues could cause actions within JS template literals to be incorrectly or improperly escaped, leading to XSS vulnerabilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32289",
"url": "https://www.suse.com/security/cve/CVE-2026-32289"
},
{
"category": "external",
"summary": "SUSE Bug 1261661 for CVE-2026-32289",
"url": "https://bugzilla.suse.com/1261661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.9-150000.1.21.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.9-150000.1.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:39:19Z",
"details": "moderate"
}
],
"title": "CVE-2026-32289"
}
]
}
SUSE-SU-2026:21355-1
Vulnerability from csaf_suse - Published: 2026-04-20 13:54 - Updated: 2026-04-20 13:54| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.25",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.25 fixes the following issues:\n\n- Update to version go1.25.9 (bsc#1244485).\n- CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG (bsc#1261653).\n- CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination (bsc#1261654).\n- CVE-2026-27144: cmd/compile: no-op interface conversion bypasses overlap checking (bsc#1261655).\n- CVE-2026-32280: crypto/x509: unexpected work during chain building (bsc#1261656).\n- CVE-2026-32281: crypto/x509: inefficient policy validation (bsc#1261657).\n- CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux (bsc#1261658).\n- CVE-2026-32283: crypto/tls: multiple key update handshake messages can cause connection to deadlock (bsc#1261659).\n- CVE-2026-32288: archive/tar: unbounded allocation when parsing old format GNU sparse map (bsc#1261660).\n- CVE-2026-32289: html/template: JS template literal context incorrectly tracked (bsc#1261661).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-594",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21355-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21355-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621355-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21355-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046086.html"
},
{
"category": "self",
"summary": "SUSE Bug 1244485",
"url": "https://bugzilla.suse.com/1244485"
},
{
"category": "self",
"summary": "SUSE Bug 1261653",
"url": "https://bugzilla.suse.com/1261653"
},
{
"category": "self",
"summary": "SUSE Bug 1261654",
"url": "https://bugzilla.suse.com/1261654"
},
{
"category": "self",
"summary": "SUSE Bug 1261655",
"url": "https://bugzilla.suse.com/1261655"
},
{
"category": "self",
"summary": "SUSE Bug 1261656",
"url": "https://bugzilla.suse.com/1261656"
},
{
"category": "self",
"summary": "SUSE Bug 1261657",
"url": "https://bugzilla.suse.com/1261657"
},
{
"category": "self",
"summary": "SUSE Bug 1261658",
"url": "https://bugzilla.suse.com/1261658"
},
{
"category": "self",
"summary": "SUSE Bug 1261659",
"url": "https://bugzilla.suse.com/1261659"
},
{
"category": "self",
"summary": "SUSE Bug 1261660",
"url": "https://bugzilla.suse.com/1261660"
},
{
"category": "self",
"summary": "SUSE Bug 1261661",
"url": "https://bugzilla.suse.com/1261661"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27140 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27143 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32280 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32281 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32282 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32283 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32288 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32289 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32289/"
}
],
"title": "Security update for go1.25",
"tracking": {
"current_release_date": "2026-04-20T13:54:28Z",
"generator": {
"date": "2026-04-20T13:54:28Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21355-1",
"initial_release_date": "2026-04-20T13:54:28Z",
"revision_history": [
{
"date": "2026-04-20T13:54:28Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-160000.1.1.aarch64",
"product": {
"name": "go1.25-1.25.9-160000.1.1.aarch64",
"product_id": "go1.25-1.25.9-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-160000.1.1.aarch64",
"product": {
"name": "go1.25-doc-1.25.9-160000.1.1.aarch64",
"product_id": "go1.25-doc-1.25.9-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-libstd-1.25.9-160000.1.1.aarch64",
"product": {
"name": "go1.25-libstd-1.25.9-160000.1.1.aarch64",
"product_id": "go1.25-libstd-1.25.9-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-160000.1.1.aarch64",
"product": {
"name": "go1.25-race-1.25.9-160000.1.1.aarch64",
"product_id": "go1.25-race-1.25.9-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-160000.1.1.ppc64le",
"product": {
"name": "go1.25-1.25.9-160000.1.1.ppc64le",
"product_id": "go1.25-1.25.9-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-160000.1.1.ppc64le",
"product": {
"name": "go1.25-doc-1.25.9-160000.1.1.ppc64le",
"product_id": "go1.25-doc-1.25.9-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-160000.1.1.ppc64le",
"product": {
"name": "go1.25-race-1.25.9-160000.1.1.ppc64le",
"product_id": "go1.25-race-1.25.9-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-160000.1.1.s390x",
"product": {
"name": "go1.25-1.25.9-160000.1.1.s390x",
"product_id": "go1.25-1.25.9-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-160000.1.1.s390x",
"product": {
"name": "go1.25-doc-1.25.9-160000.1.1.s390x",
"product_id": "go1.25-doc-1.25.9-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-160000.1.1.s390x",
"product": {
"name": "go1.25-race-1.25.9-160000.1.1.s390x",
"product_id": "go1.25-race-1.25.9-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.9-160000.1.1.x86_64",
"product": {
"name": "go1.25-1.25.9-160000.1.1.x86_64",
"product_id": "go1.25-1.25.9-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.9-160000.1.1.x86_64",
"product": {
"name": "go1.25-doc-1.25.9-160000.1.1.x86_64",
"product_id": "go1.25-doc-1.25.9-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-libstd-1.25.9-160000.1.1.x86_64",
"product": {
"name": "go1.25-libstd-1.25.9-160000.1.1.x86_64",
"product_id": "go1.25-libstd-1.25.9-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.9-160000.1.1.x86_64",
"product": {
"name": "go1.25-race-1.25.9-160000.1.1.x86_64",
"product_id": "go1.25-race-1.25.9-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-libstd-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-libstd-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-libstd-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-libstd-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-libstd-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-libstd-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-libstd-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-libstd-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.9-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
},
"product_reference": "go1.25-race-1.25.9-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27140"
}
],
"notes": [
{
"category": "general",
"text": "SWIG file names containing \u0027cgo\u0027 and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27140",
"url": "https://www.suse.com/security/cve/CVE-2026-27140"
},
{
"category": "external",
"summary": "SUSE Bug 1261653 for CVE-2026-27140",
"url": "https://bugzilla.suse.com/1261653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "important"
}
],
"title": "CVE-2026-27140"
},
{
"cve": "CVE-2026-27143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27143"
}
],
"notes": [
{
"category": "general",
"text": "Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27143",
"url": "https://www.suse.com/security/cve/CVE-2026-27143"
},
{
"category": "external",
"summary": "SUSE Bug 1261654 for CVE-2026-27143",
"url": "https://bugzilla.suse.com/1261654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "important"
}
],
"title": "CVE-2026-27143"
},
{
"cve": "CVE-2026-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27144"
}
],
"notes": [
{
"category": "general",
"text": "The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27144",
"url": "https://www.suse.com/security/cve/CVE-2026-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1261655 for CVE-2026-27144",
"url": "https://bugzilla.suse.com/1261655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-27144"
},
{
"cve": "CVE-2026-32280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32280"
}
],
"notes": [
{
"category": "general",
"text": "During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32280",
"url": "https://www.suse.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "SUSE Bug 1261656 for CVE-2026-32280",
"url": "https://bugzilla.suse.com/1261656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "important"
}
],
"title": "CVE-2026-32280"
},
{
"cve": "CVE-2026-32281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32281"
}
],
"notes": [
{
"category": "general",
"text": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32281",
"url": "https://www.suse.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "SUSE Bug 1261657 for CVE-2026-32281",
"url": "https://bugzilla.suse.com/1261657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-32281"
},
{
"cve": "CVE-2026-32282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32282"
}
],
"notes": [
{
"category": "general",
"text": "On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32282",
"url": "https://www.suse.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "SUSE Bug 1261658 for CVE-2026-32282",
"url": "https://bugzilla.suse.com/1261658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-32282"
},
{
"cve": "CVE-2026-32283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32283"
}
],
"notes": [
{
"category": "general",
"text": "If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32283",
"url": "https://www.suse.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "SUSE Bug 1261659 for CVE-2026-32283",
"url": "https://bugzilla.suse.com/1261659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-32283"
},
{
"cve": "CVE-2026-32288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32288"
}
],
"notes": [
{
"category": "general",
"text": "tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the \"old GNU sparse map\" format.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32288",
"url": "https://www.suse.com/security/cve/CVE-2026-32288"
},
{
"category": "external",
"summary": "SUSE Bug 1261660 for CVE-2026-32288",
"url": "https://bugzilla.suse.com/1261660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-32288"
},
{
"cve": "CVE-2026-32289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32289"
}
],
"notes": [
{
"category": "general",
"text": "Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being applied. These issues could cause actions within JS template literals to be incorrectly or improperly escaped, leading to XSS vulnerabilities.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32289",
"url": "https://www.suse.com/security/cve/CVE-2026-32289"
},
{
"category": "external",
"summary": "SUSE Bug 1261661 for CVE-2026-32289",
"url": "https://bugzilla.suse.com/1261661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:go1.25-race-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-doc-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-libstd-1.25.9-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:go1.25-race-1.25.9-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-20T13:54:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-32289"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.